Hi
I am working on a project where a broker has below configuration and has a list of some clients with valid username, password, certificates installed for broker, now I want to revoke connection permission for some of the clients from the client list.
I am using use_identity_as_username through certificate CN name, but I don't have control over the clients connecting to the broker, as all certificates signed and released to clients. so how to revoke certificates or client connection access.
May be there exist solution for my problem but I am not quite sure which is good for this situation.
corey030
commented
4 years ago
Hi I am working on a project where a broker has below configuration and has a list of some clients with valid username, password, certificates installed for broker, now I want to revoke connection permission for some of the clients from the client list. I am using use_identity_as_username through certificate CN name, but I don't have control over the clients connecting to the broker, as all certificates signed and released to clients. so how to revoke certificates or client connection access. May be there exist solution for my problem but I am not quite sure which is good for this situation.
port 8883 cafile /etc/mosquitto/certs/ca.crt certfile /etc/mosquitto/certs/broker.crt keyfile /etc/mosquitto/certs/broker.key require_certificate true tls_version tlsv1.1 use_identity_as_username true allow_anonymous false password_file /etc/mosquitto/pwfile