YuDash
  • Welcome
  • YuDash IoT Products
    • LYNX User Manual
      • Terminals and Wiring
      • LYNX Configuration
      • Network Settings
      • LYNX Settings
        • Modbus RS485
        • Analog Inputs
        • Data Scaling
        • Advance Feature Settings
        • Cloud and Payload Settings
        • Ethernet Settings
        • Modbus TCP/IP
        • HTML Parser Settings
        • Digital Sensors Settings
    • ZENYX User Manual
      • Terminals and Wiring
      • ZENYX Configuration
      • Network Settings
      • ZENYX Settings
        • Modbus RS485
        • Analog Inputs
        • Data Scaling
        • Advance Feature Settings
        • Cloud and Payload Settings
        • Ethernet Settings
        • Modbus TCP/IP
    • ONYX
    • Setu
    • QUBIX
  • Device Configuration
    • Device Configuration
    • Device Features
      • Network
      • Modbus/RS485
        • Modbus Poll Tutorial
      • Modbus TCP/IP
      • Modbus Server
        • Analog to Modbus/RS485 Server (Slave)
        • Analog to Modbus/TCP-IP Server
      • Ethernet
      • Data Logging
  • Firmware
    • Firmware release notes
    • Firmware upgrade
  • YuDash JSON API
    • Modbus Settings
    • Analog Settings
    • Data Scale Settings
  • DEVICE TO CLOUD API
    • YuDash IIoT Stack
    • Cloud Protocols
      • MQTT
      • HTTP
      • FTP
      • SSL/TLS
        • MQTT with Self Signed TLS
    • Payload Formats
      • JSON Payloads
      • YuTGT: YuDash Text Generator
    • Network Connectivity
    • Industrial Protocols
      • Modbus
  • YuDash IoT Platform
    • YuReCon
  • Integration Guides
    • IoT Platform Integration
      • Ubidots
      • TagoIO
      • Losant
      • Datacake
      • Eagle.io
      • Boodskap
      • Statstream
      • Qubitro
      • Thingsboard
    • Industrial Instruments
      • Energy
        • SE EM6400NG+
        • Selec MFM376
        • L&T WL 4040
        • Entes MPR-46S
        • Selec EM4M
        • Secure Elite 100
        • Siemens Smart 7KT
        • Selec EM2M
      • Process Control
        • Selec FLEX2MV3 6AII
        • Selec MiBRX 2M PLC
        • Temp+Humidity XY-MD02
        • PPI AIMS 4/8X
    • Environment/Emission
      • Air & Water
      • Weather
    • Industrial PLCs
  • Use Cases
    • Environment
      • Ground Water Compliance
      • Continuous Emission Monitoring System (CEMS)
    • Smart Building
      • IoT based Building Monitoring Solution
      • Tenant Energy Sub-metering and Billing System
    • Asset Management
      • Centralized Monitoring System for Gas Plant OEM
Powered by GitBook
On this page
  • Connecting YuDash to AWS IoT Core via MQTT
  • 1) MQTT General Settings in MQTTX
  • 2) Certificates section in MQTTX
  • 3) MQTT Settings mapped to YuDash configuration
  • 4) Uploading Certificate files in YuDash through Assets folder
  • 5) Mapping the uploaded certificate files in MQTT Settings
  • 6) Sample lynx.json for self signed certificate
  1. DEVICE TO CLOUD API
  2. Cloud Protocols
  3. SSL/TLS

MQTT with Self Signed TLS

This tutorial explains how to enable TLS security using self-signed certificates with YuDash products.

To establish a secure connection with the MQTT broker, the client must present the following three files during the TLS handshake:

  • CA Certificate (.pem) – Certificate Authority file used to verify the server's certificate.

  • Client Certificate (.crt) – Identifies the YuDash device to the server.

  • Client Private Key (.key) – Used to prove ownership of the client certificate.

To use self-signed TLS certificates with YuDash devices, you must upload the required files via the Assets section on the YuDash configuration page.

Before configuring TLS settings on your YuDash device, it is strongly recommended to first verify the MQTT connection using a desktop client such as MQTTX (or any similar tool).

This helps ensure that:

  • The server is accessible,

  • The self-signed certificates are valid,

  • The MQTT topic and credentials are correct.

Once the connection works reliably on your PC/laptop, you can proceed to apply the same settings in the YuDash JSON configuration.

Connecting YuDash to AWS IoT Core via MQTT

In this tutorial, we will walk through the process of configuring YuDash devices to connect with AWS IoT Core over MQTT.

To ensure a smooth setup, we will first demonstrate the connection using the MQTTX desktop client as a reference. Once verified, the same configuration can be applied to YuDash via its JSON settings.

1) MQTT General Settings in MQTTX

MQTTX General Settings are filled with AWS IoT Core broker details. "CA or Self signed certificate" is selected.

2) Certificates section in MQTTX

3) MQTT Settings mapped to YuDash configuration

The MQTT settings are per regular MQTT settings. MQTT Secure Layer is enabled. We will not select "MQTT CA Certificate" as we will use self signed certificates. These files will uploaded from Assets section (explained in next step).

4) Uploading Certificate files in YuDash through Assets folder

5) Mapping the uploaded certificate files in MQTT Settings

After the certificate files are uploaded in the YuDash IoT device (/assets), the MQTT settings have to be manually updated in lynx.json file. Besides regular MQTT settings, the "tls*" keys have to be inserted for mapping to certificate files.

6) Sample lynx.json for self signed certificate

Following is sample mqttSettings block to use self signed certificate in TLS

// sample MQTT settings in lynx.json
  "mqttSettings": {
    "platformName": "AWS",
    "mqttSSL": 1,
    "mqttServer": "MQTT_broker_url",  // as per server settings
    "userName": "<username>",           
    "password": "<password>",
    "publishTopic": "<publis_topic>",
    "clientName": "<client_name>",
    "mqttTLS": 1,
    "tlsCaCert": "/assets/AmazonRootCA1.pem", // names as per uploaded files.
    "tlsClientCert": "/assets/AWS1.pem.crt",
    "tlsClientKey": "/assets/AWS1.pem.key",
    "tlsSetInsecure": 0,
    "mqttPort": "8883",
  },
PreviousSSL/TLSNextPayload Formats

Last updated 4 days ago