Configure certificates

Open settings

The settings are opened via the SETTINGS section and in the Certificates tab.

When accessing a CMTK, certificates play an important role in two contexts:
.

1. Encrypted access via HTTPS using a web browser
   In this case, a self-signed certificate is generated when the CMTK is commissioned. You can renew and export this in the settings under Certificates. Current web browsers do warn about the self-signed certificate when accessing. Nevertheless, the encrypted access via HTTPS should be used preferentially.
   
2. Access to the included MQTT broker
   In this case - and if access to the MQTT broker has been enabled as described before - an MQTT client (e.g. MQTTfx) also needs a certificate. This can be exported in the settings to MQTT and imported in the used client. Some MQTT clients allow to omit the validation of the certificate in their settings. The import on the client side is then unnecessary.