Certificates

Provide TLS certificates to encrypt broker traffic and verify clients. The Certificates page is a form on the MQTT service. Edit the fields and use the Save button in the page header to stage your changes, which take effect after you deploy.

What certificates do

Certificates secure the traffic between the MQTT broker and your devices. They encrypt data in transit, establish the connection over TLS, and, when MTLS is on, verify each connecting device by its certificate.

Enabling a custom certificate

Turn on Enable Custom Certificate to provide your own certificate material. The form then accepts three values, each in its own text area with a copy and expand control:

CA Certificate: the Certificate Authority certificate
Server Certificate: the server certificate
Server Key: the private key for the server certificate

Mutual TLS

Turn on Enable MTLS to require mutual TLS. With MTLS the broker requires a custom certificate, and both the client and the broker authenticate each other using certificates.

What certificates do​

Enabling a custom certificate​

Mutual TLS​

What certificates do

Enabling a custom certificate

Mutual TLS