Mirror/AI-on-the-edge-device
1
0
Fork 0
mirror of https://github.com/jomjol/AI-on-the-edge-device.git synced 2025-12-06 11:36:51 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
AI-on-the-edge-device/param-docs/parameter-pages/MQTT/ValidateServerCert.md
michael fea0c1b859 TOOLTIPs_revised
2025-02-02 22:14:58 +01:00

1.0 KiB
Raw Permalink Blame History

Parameter ValidateServerCert

Default Value: true

!!! Warning This is an Expert Parameter! Only change it if you understand what it does!

Enable or disable the validation of the server certificate CN field.

If enabled (true), the certificate sent by the server is validated using the configured Root CA Certificate file.
The server name in uri is compared with the CN field of the server certificate.
A connection is only established if they agree. It ensures the origin of the server.

If disabled (false), the ESP32 skipped any validation of server certificate CN field.
This reduces the security of TLS and makes the MQTT client susceptible to MITM attacks.

!!! Note This also means that you might have to change the protocol and port in to mqtts://example.com:8883!

If you use public brokers, is recommended to set this parameter to "enabled (true)".