Certificates¶
Here you can manage your certificates.
You will find it under Settings > Certificates
Certificates location
You can renew, copy or export the certificate.
Note
If you renew the certificate, the old certificate is not accepted any more and you will get a notification that the certificate has been renewed
Note
If the Hostname is changed, a new certificate is needed
Note
The CA certificate can be used for HTTPS, MQTT, Influxdb, OPC UA Server and Client communication
Certificates settings
Using the Certificate in the Browser¶
Note
In this example, Chrome browser on Windows 10 is usend. If you are using a different browser or operating system, the exact steps can differ.
-
Export the CA certificate by clicking on the Export CA certificate button and select a certificate format depending on the operating system (Windows -> .crt). The Certificate Revocation List is required for OPC UA.
Export button -
Open the Settings of your Browser
Browser menu -
Select Privacy and security
Browser settings -
Select Security
Security settings -
Scroll down to Advanced and klick on Manage certificates
Advanced settings -
Click on Trusted Root Certification Authorities, after that klick on Import...
Import certificate -
Click on Next
Import certificate wizard -
Select the certificate file you downloaded in step one and klick on Next
upload certificate -
Click on Next
select certificate store -
Click on Finish
finish certificate upload -
Now you connect to the CMTK with HTTPS and the connection is secure
secure connection
Certificate Revocation List (CRL)¶
A Certificate Revocation List (CRL) is a list of digital certificates revoked by a Certificate Authority (CA) before their expiration date. CRLs are a way to verify the validity of a certificate and ensure the integrity of signatures.
Export the Certificate Revocation List¶
Export the Certificate Revocation List by clicking on the Certificate Revocation List (CRL) button.
Export CRL