MQTT - Certificate

This tab allows to define a client-side certificate that should be used for the communication with the broker.

For a TLS connection type MQTT brokers can be configured to verify the client identity by checking if the client certificate is trusted. For that purpose a client certificate must be configured and the corresponding root certificate or the client application certificate must be in the broker certificate trust list. How this is done depends on the broker - see the specific broker documentation.

Figure 1. MQTT Certificate Tab

Client-side certificate

Use default certificate

Defines if the default certificate of WinCC OA should be used.

Client certificate

Client certificate that should be used. The certificate is retrieved from the directory specified via the config entry certPath.

Client private key

The client key that should be used. The client key is retrieved from the directory specified via the config entry certPath.

Private key password

Password of the client certificate. Only required if a password has been defined for the used certificate.