-
Notifications
You must be signed in to change notification settings - Fork 2.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
TLS certificate instructions no longer work #1339
Comments
I think you're being generous to say they are a great run through, they are bare bones commands with no other guidance. They do work with current versions though, I'm curious what you are seeing that doesn't work? I agree that the owntracks script is excellent! |
I found that the client device was not able to connect to the MQTT server. The error message was quite generic, though I don't have a record of it now. I think that the own tracks approach specifies the use of each certificate and that seems to be needed now. |
The mosquitto docs have a great run-through for setting up X509 certificates for mosquitto (https://mosquitto.org/man/mosquitto-tls-7.html), but these no longer work with the latest versions of mosquitto. In testing, I've found script that does generate valid certificates (https://github.com/owntracks/tools/blob/master/TLS/generate-CA.sh) and it generates X509v3 certificates with some additional options (rather than x509v1 certificates).
I'm no expert in openssl, but I've whittled down the generation to this for my own purposes. But I think the docs need updating.
The text was updated successfully, but these errors were encountered: