Share via

Authenticate device with x509 certificate chain

Vu Huy Hop (GAM.VN.DAP) 1 Reputation point
2021-04-14T07:32:49.31+00:00

Hi,
I have a x509 certificate chain (Root CA -> Intermedicate Cert -> Device cert). I want to authenticate mydevice with IoT Central, so do I need to verify both Intermediate and Root certificate on IoT central?

Azure IoT Central
Azure IoT Central
An Azure hosted internet of things (IoT) application platform.
376 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. QuantumCache 20,366 Reputation points Moderator
    2021-04-14T19:36:58.397+00:00

    Hello @Vu Huy Hop (GAM.VN.DAP)

    Please see the below sections for more understanding!

    X.509 group enrollment
    In a production environment, using X.509 certificates is the recommended device authentication mechanism for IoT Central.
    To learn more, see Device Authentication using X.509 CA Certificates.

    To connect a device with an X.509 certificate to your application:

    1. Create an enrollment group that uses the Certificates (X.509) attestation type.
    2. Add and verify an intermediate (OR) root X.509 certificate in the enrollment group.
    3. Generate a leaf certificate from the root or intermediate certificate in the enrollment group. Send the leaf certificate from the device when it connects to your application.

    To learn more, see How to connect devices with X.509 certificates

    87867-image.png

    If the response is helpful, please click "Accept Answer" and upvote it.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.