Mirror/AI-on-the-edge-device
1
0
Fork 0
mirror of https://github.com/jomjol/AI-on-the-edge-device.git synced 2025-12-16 08:26:52 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
4846a52d45fd86b2842dea70b2e1d3a8a746e75c
AI-on-the-edge-device/param-docs/parameter-pages/MQTT/ValidateServerCert.md
michael 4d74d0c522 test1
2024-12-24 12:14:53 +01:00

20 lines
1020 B
Markdown
Raw Blame History

# Parameter `ValidateServerCert`
Default Value: `true`
!!! Warning
This is an **Expert Parameter**! Only change it if you understand what it does!
Enable or disable the validation of the server certificate.
If `enabled (true)`, the certificate sent by the server is validated using the configured [Root CA Certificate file](https://jomjol.github.io/AI-on-the-edge-device-docs/Parameters/#parameter-cacert).<br>
The server name in [uri](https://jomjol.github.io/AI-on-the-edge-device-docs/Parameters/#parameter-uri) is compared with the CN field of the server certificate.<br>
A connection will be only established if these match.<br>
It ensures the origin of the server.
If `disabled (false)`, only the validity of the certificate (e.g. expiry) is checked, not the origin (CN field).<br>
If you use public brokers, make sure to set this parameter to "enabled", to avoid potential MITM-Attacks!
!!! Note
This also means that you might have to change the protocol and port in to `mqtts://example.com:8883`!
Reference in New Issue View Git Blame Copy Permalink