IoT Gateway > Configure the Gateway > Importing a Client-Side Certificate for the MQTT Client Agent
Importing a Client-Side Certificate for the MQTT Client Agent
A client certificate used by all MQTT Agent objects can be imported and viewed through the Administration | Settings... menu. A MQTT client certificate needs to be imported when connecting to MQTT brokers (e.g AWS IoT) that require two-way authentication; also known as Client Certificates or Client Authentication. When using TLS with two-way authentication the client provides a certificate that allows the server (MQTT broker) to identify and authenticate the client.
Import New Certificate Use this button to import a certificate in .PFX, .DER, .CER, .CRT, or .PEM format. PFX certificates contain the private key, but may be password protected. All of the other certificate types require the user to select an accompanying private key file, which may be password protected.
View Certificate This displays the details of the current certificate.
* 
When importing a certificate, the new certificate does not take effect until the MQTT Client Agent(s) are stopped and restarted by disabling and re-enabling them or by reinitializing the server runtime.
* 
Was this helpful?