...

        └── transmission.key

Setting up SSL Connections Using Two-way Authentication

Now we are ready to setup SSL connections between two clients (MQTT Engine and Transmission) and the Chariot Server. Here is a summary of what needs to be done:

• Server side configuration
• Enable SSL on Chariot
• Set server side certificates and keys (serverCA.crt, server.key, and server.crt) on Chariot
• Add Clients CA certificates (engineCA.crt and transmissionCA.crt) to the Chariot truststore
• Set the ‘Clients Authentication Policy’ on Chariot to “required”
• Client side configuration
• Add the serverCA.crt, engine.key, and engine.crt to the ‘Chariot’ connection on the MQTT Engine side.
• Add the serverCA.crt, transmission.key, and transmission.crt to the ‘Chariot’ connection on the MQTT Transmission side.