...
└── transmission.key
Setting up SSL Connections Using Two-way Authentication
Now we are ready to setup SSL connections between two clients (MQTT Engine and Transmission) and the Chariot Server. Here is a summary of what needs to be done:
- Server side configuration
- Enable SSL on Chariot
- Set server side certificates and keys (serverCA.crt, server.key, and server.crt) on Chariot
- Add Clients CA certificates (engineCA.crt and transmissionCA.crt) to the Chariot truststore
- Set the ‘Clients Authentication Policy’ on Chariot to “required”
- Client side configuration
- Add the serverCA.crt, engine.key, and engine.crt to the ‘Chariot’ connection on the MQTT Engine side.
- Add the serverCA.crt, transmission.key, and transmission.crt to the ‘Chariot’ connection on the MQTT Transmission side.