Support

Support for business applications

Kaspersky IoT Secure Gateway 100

Configuring the gateway

Configuring a connection over the MQTT protocol

Required actions when an MQTT broker certificate is revoked

Kaspersky IoT Secure Gateway 100
Нет результатов
Online Help
FAQ Download Forum Contact support Recovery tools Product videos

Required actions when an MQTT broker certificate is revoked

May 24, 2023

ID 246545

Get as PDF

When an MQTT broker certificate is revoked, you will need to obtain a new certificate from the MQTT broker administrator and replace the revoked certificate. If you do not do this, Kaspersky IoT Secure Gateway 100 will trust both the revoked certificate and the new certificate until the revoked certificate expires. This could lead to a situation in which a connection established over a secure channel is not actually secure.

To use a new MQTT broker certificate instead of a revoked certificate:

  1. In the /app/Core/pki/certs/transfer/mqtt/publisher directory on the HW-IDS partition of the microSD card, delete the file indicated in the trustStore parameter of the MqttPublisherSettings-0.json configuration file.
  2. In the trustStore parameter of the MqttPublisherSettings-0.json configuration file, specify the name of the new certificate file.
  3. Copy the new certificate file to the /app/Core/pki/certs/transfer/mqtt/publisher directory on the HW-IDS partition.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.