sp2ong
commented
1 year ago Ups I found a problem I upload to Android wrong CA crt file
Closed sp2ong closed 1 year ago
sp2ong
commented
1 year ago Ups I found a problem I upload to Android wrong CA crt file
Hi,
Many thanks for the very nice app MQTT Dashboard.
I have set up my own local Mosquitto server with a generated certificate self-signed In configuration mosquito
listener 8883 cafile /etc/mosquitto/certs/ca.crt certfile /etc/mosquitto/certs/server.crt keyfile /etc/mosquitto/certs/server.key tls_version tlsv1.2 require_certificate false use_identity_as_username false
I set require_certificate false because I would like to use the Encrypted session to send a username and password so app does not need to send client certification only use CA cert from mosquito which was uploaded to Android and is available in the list of certificates in Settings > Security > Certificates the "OWN certificates sections"
When using mosquitto_pub application like
mosquitto_pub -p 8883 -h hostname -t "topics" -m "message" --cafile ca.crt -u user -P pass
all works nicely without problems and I can publish a message
But when I use MQTT Dashboard (free version) and setup connection with hostname and port 8883 and set TCP/TLS options and put the username and password the mosquito show in the log
OpenSSL Error[0]: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown
MQTT Dashboard does not use/see CA certificate for the hostname which was used and for this hostname was generated CA cert?