Device provisioned with DPS always shown as "X509 self-signed" instead of "Certificate Authority"
I try to set an Azure DPS with the authentication type "x509 CA certificate". Everything works except the IoT hub shows devices provisioned with DPS as "X509 self-signed" instead of "Certificate Authority".
With devices directly created on IoT Hub (NOT via DPS), authenticated types are set to Certificate Authority. This is the behavior I want to reproduce with devices created from DPS.
My DPS enrollment group settings:
For testing, I'm using the IoT-Sdk-CSharp and follow this sample.
Do you know what I have to change in DPS for my devices to appear with the "Certificate Authority" authentication type?
Thank you for your help. Have a nice day.
The authentication for the devices will show as "X509 CA Signed" rather than "Self-Signed X509 Certificate" once you obtain a legitimate certificate from a reliable Certified Authority. Please refer to this resource X.509 certificate attestation. (or) We need to add the root CA certificate to the IoT Hub. You can add the root CA certificate by selecting + Add in the Certificates section of the IoT Hub and uploading the root CA certificate file. Make sure to select the box next to Set certificate status to verified on upload. If you didn't choose to automatically verify the certificate during upload, you can manually prove possession by generating a verification code and creating a certificate that contains the verification code. You can then upload the verification certificate to your provisioning service in the Certificate Details dialog and select Verify.
Sample example Provision X.509 devices to Azure IoT Hub using a DPS enrollment group -- Used this link for
az iot dps enrollment-groupfrom MSDOC.Replace the your resourcegroupname, dpsname, enrollment_id, registration_id. It gives
derived-device-keyorPROVISIONING_SYMMETRIC_KEY.
az iot dps enrollment-group compute-device-key -g {resourcegroupname} --dps-name {dpsname} --enrollment-id {enrollmentid} --registration-id {registrationid}
Above steps are for Provision a simulated symmetric key device
Code reference Provision multiple X.509 devices using enrollment groups
- Refer to this for azure-docs/articles/iot-dps/tutorial-custom-hsm-enrollment-group-x509.md at main.
- Paho Java Mqttv5 Connection lost (32109) to Azure IoT Hub
- Can messages be sent directly to the built-in Event Hubs endpoint in Azure IoT Hub?
- Azure functions decoding error for IotHub device connection state message schema
- Azure Device SDK fails to connect to IoTHub
- Publish message to IoTHub via Micronaut MQTT and cert-authentification
- Azure Service to Publish and Subscribe on custom topic same as available in AWS IoT
- Get deployment manifest from Iothub configuration using .net
- Stream Analytics doesn't output the data to SQL but does to a blob storage
- Availability check for IotHub Using Ping C# Does not work ICMP Echo packet in container as the outbound does not allow ICMP
- How to Consume the Latest Event with Azure Event Hubs Go SDK (azeventhubs)?
- Azure IoTEdge - Custom IoTEdge module unable to connect to Hub with Communication_Error
- Azure: Subscribing to an external MQTT Broker
- Unable to delete, crate or modify Event Subscription in Azure IoT Hub
- How can I do Device to Device communication using Azure
- Does an Azure IoT Hub Maintain both a device twin and a digital twin?
- System Properties of D2C IoT Hub messages not appearing within Route to Non Default Event Hub
- Stream Analytics - Output Device Messages Only Upon Change
- How to send a message to a device with self signed certification as authentication in Azure IoT Hub through the REST API
- Azure IOT Hub device update agent for windows or any supporting libraries in c#
- how to update "SKU" and messaging limit of an IOThub from Azure function app (isolated)
- Alternatives for azure-iot-hub python package
- Azure IoT DPS - Enrollment Group - Create Or Update - Rest API
- How do I use Azure IoT SDK (C#) to develop code to send data from my robotic arm to my IoT hub?
- Azure sdk receiving different error messages while trying to connect to IotHub when device is disabled
- Should one set the TransportType for the IoT Hub DeviceClient?
- Questions regarding X509 certificate authentication in Azure IotHub
- How to solve my message body from IoT device can't receive by azure functions via vscode/local
- How to send tool data from telemetry Azure IoT Hub to Azure Functions?
- Environment variable IOTEDGE_WORKLOADURI is required in Java azure IoT SDK using ModuleClient Class
- Using iotedgehubdev generated iothub modules don't run locally due to "repository name must be lowercase"