Configuring MQTT broker settings
In Kaspersky IoT Secure Gateway 1000, the Eclipse Mosquitto MQTT broker exchanges telemetry data over the Message Queuing Telemetry Transport (MQTT) protocol. MQTT settings are stored in an MQTT broker profile. An MQTT broker profile binds an Eclipse Mosquitto configuration file to security certificates. Kaspersky IoT Secure Gateway 1000 is delivered with a predefined profile that includes an MQTT broker configuration file. Kaspersky IoT Secure Gateway 1000 lets you create new profiles, edit existing profiles, and switch between profiles. To transmit data over the MQTT protocol, one of the MQTT broker profiles must be active. The predefined profile is active by default.
The MQTT broker does not support a TLS connection for traffic coming from controllers and sensors of internal enterprise network hardware. A TLS connection is supported only for external network traffic.
When configuring MQTT broker settings, the contents of the configuration file may contain personal data. You need to check the data uploaded to the MQTT broker profile of Kaspersky IoT Secure Gateway 1000.
In the Kaspersky IoT Secure Gateway 1000 web interface menu, one of the following statuses of MQTT broker configuration is displayed next to the MQTT broker section:
– means that the MQTT broker settings are configured correctly.
– means that the MQTT broker cannot connect to the network, so you need to configure the network settings.
– means that the MQTT broker settings are configured incorrectly, so you need to configure the MQTT broker settings.