GSP
Quick Navigator

Search Site

Unix VPS
A - Starter
B - Basic
C - Preferred
D - Commercial
MPS - Dedicated
Previous VPSs
* Sign Up! *

Support
Contact Us
Online Help
Handbooks
Domain Status
Man Pages

FAQ
Virtual Servers
Pricing
Billing
Technical

Network
Facilities
Connectivity
Topology Map

Miscellaneous
Server Agreement
Year 2038
Credits
 

USA Flag

 

 

Man Pages


Manual Reference Pages  -  MOSQUITTO-TLS (7)

.ds Aq ’

NAME

mosquitto-tls - Configure SSL/TLS support for Mosquitto

CONTENTS

DESCRIPTION

mosquitto provides SSL support for encrypted network connections and authentication. This manual describes how to create the files needed.

Note

It is important to use different certificate subject parameters for your CA, server and clients. If the certificates appear identical, even though generated separately, the broker/client will not be able to distinguish between them and you will experience difficult to diagnose errors.

CERTIFICATE AUTHORITY

Generate a certificate authority certificate and key.

o

o openssl req -new -x509 -days <duration> -extensions v3_ca -keyout ca.key -out ca.crt

SERVER

Generate a server key.

o

o openssl genrsa -des3 -out server.key 2048

Generate a server key without encryption.

o

o openssl genrsa -out server.key 2048

Generate a certificate signing request to send to the CA.

o

o openssl req -out server.csr -key server.key -new

Send the CSR to the CA, or sign it with your CA key:

o

o openssl x509 -req -in server.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out server.crt -days <duration>

CLIENT

Generate a client key.

o

o openssl genrsa -des3 -out client.key 2048

Generate a certificate signing request to send to the CA.

o

o openssl req -out client.csr -key client.key -new

Send the CSR to the CA, or sign it with your CA key:

o

o openssl x509 -req -in client.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out client.crt -days <duration>

SEE ALSO

mosquitto(8), mosquitto-conf(5)

AUTHOR

Roger Light <roger@atchoo.org>

Search for    or go to Top of page |  Section 7 |  Main Index


Mosquitto Project MOSQUITTO-TLS (7) 09/16/2015

Powered by GSP Visit the GSP FreeBSD Man Page Interface.
Output converted with manServer 1.07.