I’m a virgin OH user, and this is virgin post, so be gentle
- but let me know if this is misplaced post or if i need to provide further info.
- Platform information:
- Openhabian running on RPi 3b+
- openHAB version: 2.5 M1
- Mosquitto 3.1 broker
- MQTT binding version: 2.4
- Issue of the topic: please be detailed explaining your issue
I have a functioning MQTT network with TLS already setup, but the OH MQTT binding doesn’t connect to the broker using certificate authentication. I connects fine if i use user/password, but I’d like it to use certificates.
So I’m assuming its an issue with the hash’es that i need to use in the binding configuration?
It does pin some sort of hash, when i try to connect, but the format is wrong (no hashname - only hash value). I can’t identify the hash value from any of the certificates or keys either, so i do not know where these are being pinned from? I have tried using SHA-1, SHA-256 & SHA-512 hashnames in front of the auto-pinned hash values, but no joy.
I have the CA cert. in the ca_certificates folder, I have the broker certificate & .key under certs folder in /etc/mosquitto. I have tried entering certificate and public key hashes from both the CA certificate and the broker certificate, but neither lets me connect the openhab binding to the broker.
I have extracted the public keys using windows cert GUI and used online hashing tools to get the public keys hashes (all provide the same hashes for the keys), and used the certificate hashes provided by certutil.exe in windows.
I’m obviously doing something wrong, so if someone could advise me to which certificate and public hash key I need to use, and how to obtain the hashes, I’d be grateful.