Google Ads

Generate SSL certifications for Mosquitto MQTT TLS Security in Windows

By
This is my Windows batch code to generate all the necessary SSL certificates for Mosquitto MQTT TLS security. This batch code will run unattended and it is recommended that you make your necessary adjustment to the code below.

I wrote this windows batch code based on  Mosquitto SSL Configuration -MQTT TLS Security. Please refer to the guide for more information on how to set up MQTT TLS with Mosquitto.


-----Code starts-----

@echo off

echo Creating a key pair (ca.key) for Certificate Authority (CA).

openssl genrsa -des3 -passout pass:123456 -out ca.key 2048

echo Creating a CA Certificate (ca.crt) and signing it with ca.key.
openssl req -new -x509 -days 3650 -key ca.key -out ca.crt -passin pass:123456 -subj "/C=US/ST=New York/L=Staten/O=dreamcatcher/OU=RnD/CN=192.168.0.104"

echo Creating a Broker key pair (broker.key).

openssl genrsa -out broker.key 2048

echo Creating a Broker certificate request file (broker.csr) and signing it with broker.key.

openssl req -new -out broker.csr -key broker.key -subj "/C=US/ST=New York/L=Manhattan/O=dreamcatcher/OU=Marketing/CN=192.168.0.104"
echo Signing the Broker certificate with the CA certificate (ca.crt)

openssl x509 -req -in broker.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out broker.crt -days 720 -passin pass:123456

echo Moving all created files to a MQTT_TLS_Certs folder

mkdir MQTT_TLS_Certs

move *.crt MQTT_TLS_Certs

move *.key MQTT_TLS_Certs

move *.csr MQTT_TLS_Certs

move *.srl MQTT_TLS_Certs

echo port 8883 > MQTT_TLS_Certs\broker.conf

echo cafile C:\Program Files\mosquitto\MQTT_TLS_Certs\ca.crt >> MQTT_TLS_Certs\broker.conf

echo keyfile C:\Program Files\mosquitto\MQTT_TLS_Certs\broker.key >> MQTT_TLS_Certs\broker.conf

echo certfile C:\Program Files\mosquitto\MQTT_TLS_Certs\broker.crt >> MQTT_TLS_Certs\broker.conf

echo tls_version tlsv1.2 >> MQTT_TLS_Certs\broker.conf

-----Code Ends-----
To start Mosquitto broker/server on Windows:

 mosquitto.exe -c MQTT_TLS_Certs\broker.conf -v

 To start Mosquitto subscriber on Windows:

 mosquitto_sub.exe -h IPADDRESS -t /SensorData --cafile MQTT_TLS_Certs\ca.crt -p 8883

 To use Mosquitto to publish a message to broker:

 mosquitto_pub.exe -h IPADDRESS -t /SensorData --cafile MQTT_TLS_Certs\ca.crt -p 8883 -m “hello world”


Comments

Post a Comment

Thank you for visiting Almost a Technocrat. Due to many spam comments, your comment will be moderated.

Popular posts from this blog

A Better SKMEI 1358 Instructions Manual

By
Image
This SKMEI 1358 digital watch is a great watch for a really cheap price. However, the instructions manual is far from good. It took me some time to explore some of the functions and at the same time trying to understand the instructions manual provided by SKMEI. I decided to write an alternative instructions manual for this watch so that other owners of this watch might benefit from it. But never the less, I am not a good English language writer myself. But I do think it is still better than the instructions manual provided. Feel free to correct me using the comment section.
Keep reading

A Better SKMEI 1418 / 1427 Instructions Manual

By
Image
This SKMEI 1418 / 1427 digital watch is a great outdoor watch for a really cheap price. However, the instructions manual is far from good. It took me some time to explore some of the functions and at the same time trying to understand the instructions manual provided by SKMEI. I decided to write an alternative instructions manual for this watch so that other owners of this watch might benefit from it. But never the less, I am not a good English language writer myself. But I do think it is still better than the instructions manual provided. Feel free to correct me using the comment section.
Keep reading

How to force stop or cancel Android download manager downloading process

By
Image
When downloading a large file with CartoonHD, it would take a very long time to complete. I have found that there is no way I could stop or cancel the downloading process if I decided to. Even if I reboot my Note 4, the downloading will restart again after the device rebooted. The only way the downloading can be stop is by uninstalling CartoonHD. I found a way to force stop or cancel the downloading process and here is what I did.
Keep reading

SKMEI 1358 Review

By
Image
I bought this watch four months ago and I have been wearing it every week during my weekend hiking. Overall this watch is impressive considering the number of features per the price that I have paid for it. All the features worked flawlessly considering that this is a relatively cheap watch comparing it to Casio ProTrek range of watch. SKMEI 1358 is basically an equivalent of Casio's triple sensors watches. You might know them as Pro Trek or Pathfinder in North America. It has a barometer, a thermometer, and a digital compass. It also has an extra sensor that the Pro Trek watches might not have as far as I know of. It has a pedometer. Yes, it counts steps and estimates the calories burnt and distance traveled. With the combination of these sensors, this is an ideal outdoor watch you can have for a fraction of a Casio Pro Trek price. SKMEI 1358
Keep reading