Versions Compared

Old Version 1

changes.mady.by.user Wes Johnson

Saved on

compared with

New Version Current

changes.mady.by.user Gill Houghton

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

MQTT Distributor provides a configuration section to the Ignition Gateway and this can been seen in the left side bar of the Ignition Gateway web UI.Image Removed

Image Added

The configuration options for each of the tabs - General and Users - are detailed below.

...

These are the global MQTT Server configuration parameters.  The configuration sections available are Main Status, Non-TLS Settings, TLS Settings and Advanced.

Anchor

...

GeneralStatus

...

GeneralStatus
General -

...

Status

Image Added

  • Enable MQTT DistributorEnabled
    • This denotes whether or not to enable or disable the MQTT Server functionality of MQTT Distributor

Anchor
GeneralNonTLSSettings
GeneralNonTLSSettings
General - Non-TLS SettingsImage Removed

Image Added

  • Enable TCP

    • This denotes whether or not to enable plain TCP connections. This is enabled by default.

  • Port
    • This is the standard TCP MQTT Server listening port.  By default it is port 1883 and is the MQTT reserved port with IANA
  • Enable Websocket
    • This denotes whether or not to enable plain Websocket connections. This is enabled by default.
  • Websocket Port
    • This is the standard Websocket listening port for the MQTT Server.  By default this is 8090

...

Tip
For more details on enabling TLS for the MQTT Server see this tutorial: Configuring Secure MQTT Communication.

Image RemovedImage Added

  • Enable TLS

    • Checkbox to enable TLS.

    • Requires that TLS Certificate has been uploaded in Ignition.

    • TLS 1.2 and TLS 1.3 are supported
  • Secure MQTT Port
    • This is the TLS enabled MQTT Server listening port if TLS is enabled.  By default it is port 8883 and is a reserved port with IANA
  • Enable Secure Websocket
    • Checkbox to enable Secure Websocket connections for MQTT Server
  • Secure Websocket Port
    • TLS enabled Websocket port for the MQTT Server.  By default this is port 9443

...

Prior to MQTT Distributor 4.0.30, there is a known issue where MQTT Distributor does not pick-up updates made to Ignition SSL certificates whilst SSL is enabled at MQTT Distributor. This can result in edge clients unable to connect to Distributor. 

The workaround is a module restart or configuration change save to the MQTT Distributor module after the Ignition SSL configuration changes.

...

Anchor
GeneralAdvanced
GeneralAdvanced
General - Advanced

Image RemovedImage Added

  • Allow Anonymous MQTT Connections
    • Checkbox to enable anonymous MQTT connections. Not selected by default.
  • Custom Properties
    • Do not use unless instructed to by Cirrus Link personnel.


Anchor
Users
Users
Users

Image RemovedImage Added

There is a single configuration section Main are two configuration sections Authentication and Access Control available.

Image Added

Anchor

...

UsersAuthentication

...

UsersAuthentication
Users -

...

Authentication

  • Username
    • The username that must be provided in the MQTT Connect packet to MQTT Server. Any client attempting an anonymous connection will be rejected. 
    • By default a user with Username admin is created
  • Password
    • The password that must be provided in the MQTT Connect packet to MQTT Server. Any client attempting an anonymous connection will be rejected. 
    • By default the admin user has a Password changeme created
  • ACLs
    • The comma separated list of Access Control Lists (ACLs) that clients connecting with this username and password are allowed to publish and subscribe on.
    • By default the admin user has an ACL of RW #

MQTT Distributor provides a configuration section to the Ignition Gateway and this can been seen in the left side bar of the Ignition Gateway web UI.Image Removed

...

Anchor

...

These are the global MQTT Server configuration parameters.  The configuration sections available are Main, Non-TLS Settings, TLS Settings and Advanced.

...

  • Enabled
    • This denotes whether or not to enable or disable the MQTT Server functionality of MQTT Distributor

...

  • Enable TCP

    • This denotes whether or not to enable plain TCP connections. This is enabled by default.

  • Port
    • This is the standard TCP MQTT Server listening port.  By default it is port 1883 and is the MQTT reserved port with IANA
  • Enable Websocket
    • This denotes whether or not to enable plain Websocket connections. This is enabled by default.
  • Websocket Port
    • This is the standard Websocket listening port for the MQTT Server.  By default this is 8090

...

For more details on enabling TLS for the MQTT Server see this tutorial: TLS Enable MQTT Distributor.Image Removed

  • Enable TLS

    • This denotes whether or not to enable TLS connections.  If TLS is used a Java Keystore file must be uploaded to secure the connection.  This is not enabled by default

  • Secure MQTT Port
    • This is the TLS enabled MQTT Server listening port if TLS is enabled.  By default it is port 8883 and is a reserved port with IANA
  • Secure Websocket Port
    • This is the TLS enabled Websocket port for the MQTT Server.  By default this is port 9443
  • Keystore Password
    • This is the Java Keystore password to use if TLS is enabled and a Java Keystore file is provided
  • Java Keystore File
    • This is the Java Keystore file that contains the server certificate and private key files

...

Image Removed

  • Allow Anonymous MQTT Connections
    • Checkbox to enable anonymous MQTT connections. Not selected by default.
  • Custom Properties
    • Custom properties to provide to MQTT Distributor. Typically this is not used.
  • Enforce Unique LWT Topic
    • Whether or not to enforce unique Will Message topics across MQTT clients
  • Unique LWT Topic Filters
    • A comma separated list of topic filters to use to enforce unique Will Message topics. The # wildcard is supported.

...

Image Removed

There is a single configuration section Main available.

...

  • The username that must be provided in the MQTT Connect packet to MQTT Server. Any client attempting an anonymous connection will be rejected. 
  • By default a user with Username admin is created

...

UsersAccessControl
UsersAccessControl
Users - Access Control

...

  • ACLs
    • The comma separated list of Access Control Lists (ACLs) that clients connecting with this username and password are allowed to publish and subscribe on.
    • By default the admin user has an ACL of RW #

...