Dragino NB device connection to AWS platform instructions

= (% data-sider-select-id="01d9dce7-4047-4b71-a8e2-c5df7daa2d54" %)1. Log in to the platform and find IoT core(%%) =

5

6

7

= (% data-sider-select-id="4d2599c0-e2a9-4d10-8c01-c68a77c3b183" %)2. Create your own test policy(%%) =

8

9

(% data-sider-select-id="499b9594-5b20-42a9-b15b-21be5a1ef28e" %)

10

== (% data-sider-select-id="c0f85e83-53c9-450c-b4eb-457071bdfbf9" %)2.1 First click the policy on the left, enter the page and click Create policy(%%) ==

11

12

(% class="wikigeneratedid" id="H" %)

13

[[image:image-20240528172927-2.png||height="377" width="931"]]

14

15

16

== (% data-sider-select-id="02035a79-77c4-4edb-b132-61acdb529526" %)2.2 After filling in a policy name for testing, the policy will be displayed on the page(%%) ==

a. Fill in any name

b. Configure the policy you created

22

23

[[image:image-20240528173144-3.png||height="572" width="931"]]

24

25

26

c. After clicking to enter the policy configuration page, follow the clicking sequence below to go to the json configuration interface, and then fill in the following fields in the "statement" keyword:

27

28

(% data-sider-select-id="7bc0f6db-481d-435a-ad0c-92cf0ede3ea4" %)

29

(% data-sider-select-id="8026a4d9-df91-4895-b9c5-3d6ac9b46012" %)**{**

30

31

**~ "Version": "2012-10-17",**

**~ "Statement": [**

**~ {**

**~ "Effect": "Allow",**

**~ "Action": "",**

**~ "Resource": ""**

**~ }**

**~ ]**

**}**

[[image:image-20240528173203-4.png||height="517" width="942"]]

51

52

53

d. Create this policy

54

55

56

(% data-sider-select-id="21f75c89-756f-4f95-919d-30cc5cf86298" %)

57

= 3. Create a Things =

58

59

(% data-sider-select-id="1a295982-a5d4-4787-896b-ac87e2385b09" %)

60

== 3.1 Create a single Things ==

61

62

63

(% data-sider-select-id="b6a1852f-c446-4c98-a017-595ac62adc60" %)

64

~1. Select Create Things

65

66

[[image:image-20240528173244-5.png||height="329" width="932"]]

67

68

[[image:image-20240528173500-6.png||height="484" width="928"]]

69

70

71

(% data-sider-select-id="de8a3324-fa57-46eb-a85c-49eeea34baa5" %)

72

2. Fill in the name of the control item you want to create in the thing name column.

73

74

Use the default for other parameters

Then click Next.

[[image:image-20240528173754-7.png||height="712" width="781"]]

79

80

81

(% data-sider-select-id="fc59dc2d-1ed3-41f5-8482-8534342857a7" %)

82

3. Choose to automatically generate a new certificate

Then click Next

[[image:image-20240528173829-8.png||height="547" width="782"]]

87

88

89

(% data-sider-select-id="d2fd3708-ecaf-4479-b1eb-b5db28e1adb9" %)

90

4. The next step is to choose a strategy

91

92

Here you can choose a policy we created in the first step

93

94

[[image:image-20240528173851-9.png||height="580" width="785"]]

95

96

97

(% data-sider-select-id="2f8892b2-d89c-416e-a5e6-6f58bd557860" %)

98

5. When you click to create things, the certificate download page will pop up.

99

100

(% data-sider-select-id="398c8d35-75ff-4077-85bb-9e0377efa186" %)

101

(% data-sider-select-id="087aa6c7-c542-4afc-9ce6-291538c31764" %)**This certificate is very important.**(%%) After creating the device, you must download the certificate of the device so that our NB device can connect normally.

102

103

Please download all the following certificates and put them in a folder.

104

105

[[image:image-20240528173926-10.png]]

106

107

108

6. You can see the things you just created in the things

109

110

[[image:image-20240528173951-11.png||height="381" width="1089"]]

111

112

113

(% data-sider-select-id="3ba36b16-0696-40e7-88b5-2c533f73589a" %)

114

= (% data-sider-select-id="fc07fe98-6fd9-4d61-a991-8524b6097b3a" %)4. Connect to AWS using Dragino-NB device(%%) =

115

116

(% data-sider-select-id="582a7e84-a00a-4129-b71d-347a29aa5142" %)

117

== 4.1 Upgrade the firmware to configure TTS firmware to set the certificate ==

118

119

120

User can change device firmware to::

121

122

* Update with new features.

* Fix bugs.

Firmware and changelog can be downloaded from : **[[Set up TLS certificate - Dropbox>>url:https://www.dropbox.com/sh/sxrgszkac4ips0q/AAA7xVIHen982Nc0edNPaB-Wa/NB-IoT/Set%20up%20TLS%20certificate?dl=0&subfolder_nav_tracking=1||data-sider-select-id="830d1b64-cb24-48b3-91e4-49da5c3f0783"]]**

127

128

Methods to Update Firmware:

129

130

* (Recommended way) OTA firmware update via BLE: [[**Instruction**>>url:http://wiki.dragino.com/xwiki/bin/view/Main/BLE_Firmware_Update_NB_Sensors_BC660K-GL/]].

131

132

* Update through UART TTL interface : **[[Instruction>>url:http://wiki.dragino.com/xwiki/bin/view/Main/UART_Access_for_NB_ST_BC660K-GL/#H4.2UpdateFirmware28Assumethedevicealreadyhaveabootloader29]]**.

(% data-sider-select-id="954c6787-a52d-4862-805c-4afa47abd128" %)

137

== 4.2 Configure certificate ==

138

139

140

After upgrade the firmware, the serial port displays as follows：

141

142

(% data-sider-select-id="8b6a9e23-dec0-476c-acd4-098aa19fe1f3" %)

143

[[image:image-20240528174330-13.png||height="286" width="568"]]

144

145

146

(% data-sider-select-id="8b6a9e23-dec0-476c-acd4-098aa19fe1f3" %)

147

=== 4.2.1 Configure CA certificate ===

148

149

150

Please input the certificate in PEM format for the user.

151

152

Use the AT command AT+CACERT as follows:

153

154

AT+CACERT=~-~-~-~--BEGIN CERTIFICATE~-~-~-~--

155

156

MIIDQTCCAimgAwIBAgITBmyfz5m/jAo54vB4ikPmljZbyjANBgkqhkiG9w0BAQsF

157

158

ADA5MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRkwFwYDVQQDExBBbWF6

159

160

b24gUm9vdCBDQSAxMB4XDTE1MDUyNjAwMDAwMFoXDTM4MDExNzAwMDAwMFowOTEL

161

162

MAkGA1UEBhMCVVMxDzANBgNVBAoTBkFtYXpvbjEZMBcGA1UEAxMQQW1hem9uIFJv

163

164

b3QgQ0EgMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALJ4gHHKeNXj

165

166

ca9HgFB0fW7Y14h29Jlo91ghYPl0hAEvrAIthtOgQ3pOsqTQNroBvo3bSMgHFzZM

167

168

9O6II8c+6zf1tRn4SWiw3te5djgdYZ6k/oI2peVKVuRF4fn9tBb6dNqcmzU5L/qw

169

170

IFAGbHrQgLKm+a/sRxmPUDgH3KKHOVj4utWp+UhnMJbulHheb4mjUcAwhmahRWa6

171

172

VOujw5H5SNz/0egwLX0tdHA114gk957EWW67c4cX8jJGKLhD+rcdqsq08p8kDi1L

173

174

93FcXmn/6pUCyziKrlA4b9v7LWIbxcceVOF34GfID5yHI9Y/QCB/IIDEgEw+OyQm

175

176

jgSubJrIqg0CAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMC

177

178

AYYwHQYDVR0OBBYEFIQYzIU07LwMlJQuCFmcx7IQTgoIMA0GCSqGSIb3DQEBCwUA

179

180

A4IBAQCY8jdaQZChGsV2USggNiMOruYou6r4lK5IpDB/G/wkjUu0yKGX9rbxenDI

181

182

U5PMCCjjmCXPI6T53iHTfIUJrU6adTrCC2qJeHZERxhlbI1Bjjt/msv0tadQ1wUs

183

184

N+gDS63pYaACbvXy8MWy7Vu33PqUXHeeE6V/Uq2V8viTO96LXFvKWlJbYK8U90vv

185

186

o/ufQJVtMVT8QtPHRh8jrdkPSHCa2XV4cdFyQzR1bldZwgJcJmApzyMZFo6IQ6XU

187

188

5MsI+yMRQ+hDKXJioaldXgjUkK642M4UwtBV8ob2xJNDd2ZhwLnoQdeXeGADbkpy

189

190

rqXRfboQnoZsG4q5WTP468SQvvG5

191

192

~-~-~-~--END CERTIFICATE~-~-~-~--}

193

194

(% style="color:red" %)**Note: Be sure to add a terminator "}" at the end of the command. Otherwise, the command will not execute successfully.**

195

196

[[image:image-20240528174408-14.png]]

197

198

199

After successful execution, as shown in the following figure.

200

201

[[image:image-20240528174502-15.png]]

202

203

Display (% style="color:blue" %)**"Successfully configured CA certificate."**(%%) If the configuration is successful, otherwise it is considered configuration failure.

204

205

206

=== 4.2.2 Configure client certificate ===

207

208

209

Use the AT command AT+CLICERT as follows：

210

211

AT+CLICERT=~-~-~-~--BEGIN CERTIFICATE~-~-~-~--

212

213

MIIDWTCCAkGgAwIBAgIUYSpJUzfb4NTa76JJxd2th0fZA8swDQYJKoZIhvcNAQEL

214

215

BQAwTTFLMEkGA1UECwxCQW1hem9uIFdlYiBTZXJ2aWNlcyBPPUFtYXpvbi5jb20g

216

217

SW5jLiBMPVNlYXR0bGUgU1Q9V2FzaGluZ3RvbiBDPVVTMB4XDTI0MDUyNDA4MDI0

218

219

NVoXDTQ5MTIzMTIzNTk1OVowHjEcMBoGA1UEAwwTQVdTIElvVCBDZXJ0aWZpY2F0

220

221

ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMTdc1GQLVBohAeCJD6n

222

223

6WTFAFrygTch90a5wUr2bhlVuDxvEhEKNcmu5vOCo5agmfLWb2VCxgezgvQOBYQ8

224

225

1oTqXJNdl4tS0DICfqb/ogVHWGHRao67XyhbPNBS0j/nCPTIIk6+/NBeYPOjaG+p

226

227

utfXE7SGIEcc3RevkYkUJx6y+WH7MLjj1mufuXBVWIL1RrfrIRPw6auVk7dhS5rU

228

229

NvYcJa7Qd6gpAh1DzPj7ZECrv7fEIIBDEsSYOy6ToWtzqGIVcIAHBDfORB0Hcm+N

230

231

7wG3KDf61P4aWkLlkP5pRUaUIQdVblxginmx2K3n8t/WP7QcfITa191rjEVVBXmk

232

233

ROsCAwEAAaNgMF4wHwYDVR0jBBgwFoAUs8Caohh1ZGP8kjSn3rtxJiJJ9IswHQYD

234

235

VR0OBBYEFCjwGwqD7FG9UCNm3wjFQX4HixzfMAwGA1UdEwEB/wQCMAAwDgYDVR0P

236

237

AQH/BAQDAgeAMA0GCSqGSIb3DQEBCwUAA4IBAQBgqI49a4PBQZYrFM63TX3EHgdd

238

239

N6Pj7AytjO+SrKNMCSo/OtIvhDTxOocr1vKrux1Tw5qmrllrIXLtlGtbmln5DS6a

240

241

DTCLrjwcIFIabLxpx5DPY1WSMYvL04SW7d4Y+3SxOFNRotDSiomr8eIIac0d3HE2

242

243

B5b0SnWZgWbrhjNUgvwo8l8tA9DOGIr2MeQ5kPjudOOiYSR3HC0v+jviBMV6VX8M

244

245

LHVH3CRshHDKBGpV1NZ1RAm9EY/oRGtSiMsyjRh6hegC0vehwVxaC4w9qG0ASkzz

246

247

42OOGfNqhYnYDiKTEIkazaoAFpTKDejWBaL7W5VpthUkQOl67IyX+ohuUKTo

248

249

~-~-~-~--END CERTIFICATE~-~-~-~--}

250

251

(% style="color:red" %)**Note: Be sure to add a terminator "}" at the end of the command. Otherwise, the command will not execute successfully.**

252

253

[[image:image-20240528174630-16.png||height="553" width="747"]]

254

255

Display (% style="color:blue" %)**"Successfully configured client certificate."**(%%) Configuration successful, otherwise configuration failed.

256

257

258

=== 4.2.3 Configure client private key ===

259

260

261

Use the AT command AT+CLIKEY, as shown below

262

263

AT+CLIKEY=~-~-~-~--BEGIN RSA PRIVATE KEY~-~-~-~--

264

265

MIIEpAIBAAKCAQEAxN1zUZAtUGiEB4IkPqfpZMUAWvKBNyH3RrnBSvZuGVW4PG8S

266

267

EQo1ya7m84KjlqCZ8tZvZULGB7OC9A4FhDzWhOpck12Xi1LQMgJ+pv+iBUdYYdFq

268

269

jrtfKFs80FLSP+cI9MgiTr780F5g86Nob6m619cTtIYgRxzdF6+RiRQnHrL5Yfsw

270

271

uOPWa5+5cFVYgvVGt+shE/Dpq5WTt2FLmtQ29hwlrtB3qCkCHUPM+PtkQKu/t8Qg

272

273

gEMSxJg7LpOha3OoYhVwgAcEN85EHQdyb43vAbcoN/rU/hpaQuWQ/mlFRpQhB1Vu

274

275

XGCKebHYrefy39Y/tBx8hNrX3WuMRVUFeaRE6wIDAQABAoIBAFhAOcjvjBDGuaEw

276

277

CxV3al49HfqnSZuwg0xWSztSm2qKDcwxsnSnEhO2b1vsTW9h0YGV9Vv8gg/Dvkmv

278

279

23M7XqM4+IUraJsRZbl1etdcM4KQSCOZoF4Zyv+pXuq4pf31kQNCkHaikWzLUkUG

280

281

FPQxr0vA49mCYwfd/ZL3ppM/0IWmxRwloV1Gb9q8iDBUcJGSDokZnT7diUxzzOcd

282

283

+UJ6xUhFq1v46Y7vO+73XROLv34JEBC0bIw2ErL6+AbzhHwb2mkuSccG9Ks37g3Z

284

285

dyyjjj8hm1wvHWepuWqEssaiS3HD5zAsI0v85xS8RwNj3zLfd8o1WC666n3CO+ij

286

287

VdRmR4kCgYEA+/sEFxpfaRomqcLwJebZcZH06U1RfJFfnbH2/Q6fANf8zNxwWs9A

288

289

O+jyk/CLhHYRIk6VIOMQmWwEYgJ2eAHfw2Diwj4/0eqkGu+yZOS6KTCewxSV73vc

290

291

SvACramJy4y6yEgDN5onwR1XqfVMfA0LzTcSupHR/xvrpf/gCsNFPxUCgYEAyAFd

292

293

nMUhJFSq3pOogxA43aJSkA8YuDS3jpBkKQ6vx81APpIMabQauOxFDt488TZGP3Yy

294

295

lhpa/lfFIgu2K7CgV4dUp+JtJJoZ/F+ExxUUzdqB4zxzWywAcc3RebfwP6qASwFT

296

297

G3mXYci4tgNWR+k5CSsuLXDk/OT5uo5GeGAEc/8CgYEAk6V8uxDP8STKnNRFpN/E

298

299

b6CHciDE64m/DgbWY2cq0fK9BUjxaLRhvfj8EqVzCrWnyoNjLHcAJfW+B7PLuPvY

300

301

IoJlvE1/Vb/4UnQ7ApVnY3VCwaoRRNc9uIcz+pAJ1sRqOarAf9cLDkPkNwktvM5k

302

303

KOXpSnrhIms4w/bPT18l9xUCgYBsAMDKbXEuK0JyGw5+Z/4tQQCQpnZU0rLkm3ha

304

305

64FkxaORplBprEZZ4cyQ8NW78/EPSAadI/JLMp5TejuPcDvFyGCgoBcMEuNBc1tC

306

307

HlIzr3FAgl5Qt3wt+FTMA9YKq0nINxjn10s2FKwaLccj4f9YwiaXh0VAg22PnlDT

308

309

pBYDhQKBgQCMwyKXJ4zYiDRdvLvgKzeuKaU4KNQItHE4KORPfkecjPoENt4bKxDw

310

311

2EdNFQLIoqBHL1s+/8+SzhCI31V7pkTs1AqCxDExJS7+8Z5NQFQIo/jooUo0N80E

312

313

y3ZZS6OLOXXscEqhMogf1grfbabXM9OkgTIq43cPQHtMGQiFAtIJkg==

314

315

~-~-~-~--END RSA PRIVATE KEY~-~-~-~--}

316

317

(% style="color:red" %)**Note: Be sure to add a terminator "}" at the end of the command. Otherwise, the command will not execute successfully.**

318

319

[[image:image-20240528174702-17.png]]

320

321

Display(% style="color:blue" %)** "Successfully configured client private key."**(%%) If the configuration is successful, otherwise it is considered configuration failure.

322

323

324

=== 4.3.3 Re-upgrade the firmware ===

325

326

327

After the certificate configuration is completed, Re-upgrade to the firmware you originally used.

328

329

330

= 5. Configure draginoNB-device =

331

332

== 5.1 Configure the data format sent by the device ==

333

334

335

AT+PRO=3,5(Data is in Json format of MQTT)

336

337

338

== 5.2 Set server address ==

339

340

341

AT+SERVADDR=an5tk94sdgjat-ats.iot.us-east-1.amazonaws.com,8883

342

343

344

== 5.3 Set up private and public topics ==

345

346

347

AWS does not limit topics, so you can set any topic

AT+SUBTOPIC=Any

AT+PUBTOPIC=Any

== 5.4 Set the TLS mode ==

AT+TLSMOD=1,2

To use the TLS mode certificate function, users need to configure the AT+TLSMOD command

360

361

AT+TLSMOD=1,0 No authentication

362

363

AT+TLSMOD=1,1 Perform server authentication

364

365

AT+TLSMOD=1,2 Perform server and client authentication if requested by the remote server.（In AWS we recommend using this mode）

Restart the device

= 6. View data on AWS =

372

373

== 6.1 Find MQTT test client in test ==

374

375

376

In the fourth step, fill in the topics you subscribed to before

AT+PUBTOPIC=XXXX

If you forget your previous topic, you can fill in #,subscribe to all topics

381

382

[[image:image-20240528175111-18.png||height="409" width="1014"]]

383

384

385

== 6.2 The data published information in Subscriptions ==

386

387

388

[[image:image-20240528175133-19.png||height="563" width="1022"]]

389

390

[[image:image-20240528175154-20.png||height="752" width="1042"]]

391

392

Wiki source code of Dragino NB device connection to AWS platform instructions

Applications

Navigation

author	version	line-number	content
		1	{{toc/}}
		2
		3
		4	= (% data-sider-select-id="01d9dce7-4047-4b71-a8e2-c5df7daa2d54" %)1. Log in to the platform and find IoT core(%%) =
		5
		6
		7	= (% data-sider-select-id="4d2599c0-e2a9-4d10-8c01-c68a77c3b183" %)2. Create your own test policy(%%) =
		8
		9	(% data-sider-select-id="499b9594-5b20-42a9-b15b-21be5a1ef28e" %)
		10	== (% data-sider-select-id="c0f85e83-53c9-450c-b4eb-457071bdfbf9" %)2.1 First click the policy on the left, enter the page and click Create policy(%%) ==
		11
		12	(% class="wikigeneratedid" id="H" %)
		13	[[image:image-20240528172927-2.png\|\|height="377" width="931"]]
		14
		15
		16	== (% data-sider-select-id="02035a79-77c4-4edb-b132-61acdb529526" %)2.2 After filling in a policy name for testing, the policy will be displayed on the page(%%) ==
		17
		18
		19	a. Fill in any name
		20
		21	b. Configure the policy you created
		22
		23	[[image:image-20240528173144-3.png\|\|height="572" width="931"]]
		24
		25
		26	c. After clicking to enter the policy configuration page, follow the clicking sequence below to go to the json configuration interface, and then fill in the following fields in the "statement" keyword:
		27
		28	(% data-sider-select-id="7bc0f6db-481d-435a-ad0c-92cf0ede3ea4" %)
		29	(% data-sider-select-id="8026a4d9-df91-4895-b9c5-3d6ac9b46012" %){
		30
		31	~ "Version": "2012-10-17",
		32
		33	~ "Statement": [
		34
		35	~ {
		36
		37	~ "Effect": "Allow",
		38
		39	~ "Action": "",
		40
		41	~ "Resource": ""
		42
		43	~ }
		44
		45	~ ]
		46
		47	}
		48
		49
		50	[[image:image-20240528173203-4.png\|\|height="517" width="942"]]
		51
		52
		53	d. Create this policy
		54
		55
		56	(% data-sider-select-id="21f75c89-756f-4f95-919d-30cc5cf86298" %)
		57	= 3. Create a Things =
		58
		59	(% data-sider-select-id="1a295982-a5d4-4787-896b-ac87e2385b09" %)
		60	== 3.1 Create a single Things ==
		61
		62
		63	(% data-sider-select-id="b6a1852f-c446-4c98-a017-595ac62adc60" %)
		64	~1. Select Create Things
		65
		66	[[image:image-20240528173244-5.png\|\|height="329" width="932"]]
		67
		68	[[image:image-20240528173500-6.png\|\|height="484" width="928"]]
		69
		70
		71	(% data-sider-select-id="de8a3324-fa57-46eb-a85c-49eeea34baa5" %)
		72	2. Fill in the name of the control item you want to create in the thing name column.
		73
		74	Use the default for other parameters
		75
		76	Then click Next.
		77
		78	[[image:image-20240528173754-7.png\|\|height="712" width="781"]]
		79
		80
		81	(% data-sider-select-id="fc59dc2d-1ed3-41f5-8482-8534342857a7" %)
		82	3. Choose to automatically generate a new certificate
		83
		84	Then click Next
		85
		86	[[image:image-20240528173829-8.png\|\|height="547" width="782"]]
		87
		88
		89	(% data-sider-select-id="d2fd3708-ecaf-4479-b1eb-b5db28e1adb9" %)
		90	4. The next step is to choose a strategy
		91
		92	Here you can choose a policy we created in the first step
		93
		94	[[image:image-20240528173851-9.png\|\|height="580" width="785"]]
		95
		96
		97	(% data-sider-select-id="2f8892b2-d89c-416e-a5e6-6f58bd557860" %)
		98	5. When you click to create things, the certificate download page will pop up.
		99
		100	(% data-sider-select-id="398c8d35-75ff-4077-85bb-9e0377efa186" %)
		101	(% data-sider-select-id="087aa6c7-c542-4afc-9ce6-291538c31764" %)This certificate is very important.(%%) After creating the device, you must download the certificate of the device so that our NB device can connect normally.
		102
		103	Please download all the following certificates and put them in a folder.
		104
		105	[[image:image-20240528173926-10.png]]
		106
		107
		108	6. You can see the things you just created in the things
		109
		110	[[image:image-20240528173951-11.png\|\|height="381" width="1089"]]
		111
		112
		113	(% data-sider-select-id="3ba36b16-0696-40e7-88b5-2c533f73589a" %)
		114	= (% data-sider-select-id="fc07fe98-6fd9-4d61-a991-8524b6097b3a" %)4. Connect to AWS using Dragino-NB device(%%) =
		115
		116	(% data-sider-select-id="582a7e84-a00a-4129-b71d-347a29aa5142" %)
		117	== 4.1 Upgrade the firmware to configure TTS firmware to set the certificate ==
		118
		119
		120	User can change device firmware to::
		121
		122	* Update with new features.
		123
		124	* Fix bugs.
		125
		126	Firmware and changelog can be downloaded from : [[Set up TLS certificate - Dropbox>>url:https://www.dropbox.com/sh/sxrgszkac4ips0q/AAA7xVIHen982Nc0edNPaB-Wa/NB-IoT/Set%20up%20TLS%20certificate?dl=0&subfolder_nav_tracking=1\|\|data-sider-select-id="830d1b64-cb24-48b3-91e4-49da5c3f0783"]]
		127
		128	Methods to Update Firmware:
		129
		130	* (Recommended way) OTA firmware update via BLE: [[Instruction>>url:http://wiki.dragino.com/xwiki/bin/view/Main/BLE_Firmware_Update_NB_Sensors_BC660K-GL/]].
		131
		132	* Update through UART TTL interface : [[Instruction>>url:http://wiki.dragino.com/xwiki/bin/view/Main/UART_Access_for_NB_ST_BC660K-GL/#H4.2UpdateFirmware28Assumethedevicealreadyhaveabootloader29]].
		133
		134
		135
		136	(% data-sider-select-id="954c6787-a52d-4862-805c-4afa47abd128" %)
		137	== 4.2 Configure certificate ==
		138
		139
		140	After upgrade the firmware, the serial port displays as follows：
		141
		142	(% data-sider-select-id="8b6a9e23-dec0-476c-acd4-098aa19fe1f3" %)
		143	[[image:image-20240528174330-13.png\|\|height="286" width="568"]]
		144
		145
		146	(% data-sider-select-id="8b6a9e23-dec0-476c-acd4-098aa19fe1f3" %)
		147	=== 4.2.1 Configure CA certificate ===
		148
		149
		150	Please input the certificate in PEM format for the user.
		151
		152	Use the AT command AT+CACERT as follows:
		153
		154	AT+CACERT=~-~-~-~--BEGIN CERTIFICATE~-~-~-~--
		155
		156	MIIDQTCCAimgAwIBAgITBmyfz5m/jAo54vB4ikPmljZbyjANBgkqhkiG9w0BAQsF
		157
		158	ADA5MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRkwFwYDVQQDExBBbWF6
		159
		160	b24gUm9vdCBDQSAxMB4XDTE1MDUyNjAwMDAwMFoXDTM4MDExNzAwMDAwMFowOTEL
		161
		162	MAkGA1UEBhMCVVMxDzANBgNVBAoTBkFtYXpvbjEZMBcGA1UEAxMQQW1hem9uIFJv
		163
		164	b3QgQ0EgMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALJ4gHHKeNXj
		165
		166	ca9HgFB0fW7Y14h29Jlo91ghYPl0hAEvrAIthtOgQ3pOsqTQNroBvo3bSMgHFzZM
		167
		168	9O6II8c+6zf1tRn4SWiw3te5djgdYZ6k/oI2peVKVuRF4fn9tBb6dNqcmzU5L/qw
		169
		170	IFAGbHrQgLKm+a/sRxmPUDgH3KKHOVj4utWp+UhnMJbulHheb4mjUcAwhmahRWa6
		171
		172	VOujw5H5SNz/0egwLX0tdHA114gk957EWW67c4cX8jJGKLhD+rcdqsq08p8kDi1L
		173
		174	93FcXmn/6pUCyziKrlA4b9v7LWIbxcceVOF34GfID5yHI9Y/QCB/IIDEgEw+OyQm
		175
		176	jgSubJrIqg0CAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMC
		177
		178	AYYwHQYDVR0OBBYEFIQYzIU07LwMlJQuCFmcx7IQTgoIMA0GCSqGSIb3DQEBCwUA
		179
		180	A4IBAQCY8jdaQZChGsV2USggNiMOruYou6r4lK5IpDB/G/wkjUu0yKGX9rbxenDI
		181
		182	U5PMCCjjmCXPI6T53iHTfIUJrU6adTrCC2qJeHZERxhlbI1Bjjt/msv0tadQ1wUs
		183
		184	N+gDS63pYaACbvXy8MWy7Vu33PqUXHeeE6V/Uq2V8viTO96LXFvKWlJbYK8U90vv
		185
		186	o/ufQJVtMVT8QtPHRh8jrdkPSHCa2XV4cdFyQzR1bldZwgJcJmApzyMZFo6IQ6XU
		187
		188	5MsI+yMRQ+hDKXJioaldXgjUkK642M4UwtBV8ob2xJNDd2ZhwLnoQdeXeGADbkpy
		189
		190	rqXRfboQnoZsG4q5WTP468SQvvG5
		191
		192	~-~-~-~--END CERTIFICATE~-~-~-~--}
		193
		194	(% style="color:red" %)Note: Be sure to add a terminator "}" at the end of the command. Otherwise, the command will not execute successfully.
		195
		196	[[image:image-20240528174408-14.png]]
		197
		198
		199	After successful execution, as shown in the following figure.
		200
		201	[[image:image-20240528174502-15.png]]
		202
		203	Display (% style="color:blue" %)"Successfully configured CA certificate."(%%) If the configuration is successful, otherwise it is considered configuration failure.
		204
		205
		206	=== 4.2.2 Configure client certificate ===
		207
		208
		209	Use the AT command AT+CLICERT as follows：
		210
		211	AT+CLICERT=~-~-~-~--BEGIN CERTIFICATE~-~-~-~--
		212
		213	MIIDWTCCAkGgAwIBAgIUYSpJUzfb4NTa76JJxd2th0fZA8swDQYJKoZIhvcNAQEL
		214
		215	BQAwTTFLMEkGA1UECwxCQW1hem9uIFdlYiBTZXJ2aWNlcyBPPUFtYXpvbi5jb20g
		216
		217	SW5jLiBMPVNlYXR0bGUgU1Q9V2FzaGluZ3RvbiBDPVVTMB4XDTI0MDUyNDA4MDI0
		218
		219	NVoXDTQ5MTIzMTIzNTk1OVowHjEcMBoGA1UEAwwTQVdTIElvVCBDZXJ0aWZpY2F0
		220
		221	ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMTdc1GQLVBohAeCJD6n
		222
		223	6WTFAFrygTch90a5wUr2bhlVuDxvEhEKNcmu5vOCo5agmfLWb2VCxgezgvQOBYQ8
		224
		225	1oTqXJNdl4tS0DICfqb/ogVHWGHRao67XyhbPNBS0j/nCPTIIk6+/NBeYPOjaG+p
		226
		227	utfXE7SGIEcc3RevkYkUJx6y+WH7MLjj1mufuXBVWIL1RrfrIRPw6auVk7dhS5rU
		228
		229	NvYcJa7Qd6gpAh1DzPj7ZECrv7fEIIBDEsSYOy6ToWtzqGIVcIAHBDfORB0Hcm+N
		230
		231	7wG3KDf61P4aWkLlkP5pRUaUIQdVblxginmx2K3n8t/WP7QcfITa191rjEVVBXmk
		232
		233	ROsCAwEAAaNgMF4wHwYDVR0jBBgwFoAUs8Caohh1ZGP8kjSn3rtxJiJJ9IswHQYD
		234
		235	VR0OBBYEFCjwGwqD7FG9UCNm3wjFQX4HixzfMAwGA1UdEwEB/wQCMAAwDgYDVR0P
		236
		237	AQH/BAQDAgeAMA0GCSqGSIb3DQEBCwUAA4IBAQBgqI49a4PBQZYrFM63TX3EHgdd
		238
		239	N6Pj7AytjO+SrKNMCSo/OtIvhDTxOocr1vKrux1Tw5qmrllrIXLtlGtbmln5DS6a
		240
		241	DTCLrjwcIFIabLxpx5DPY1WSMYvL04SW7d4Y+3SxOFNRotDSiomr8eIIac0d3HE2
		242
		243	B5b0SnWZgWbrhjNUgvwo8l8tA9DOGIr2MeQ5kPjudOOiYSR3HC0v+jviBMV6VX8M
		244
		245	LHVH3CRshHDKBGpV1NZ1RAm9EY/oRGtSiMsyjRh6hegC0vehwVxaC4w9qG0ASkzz
		246
		247	42OOGfNqhYnYDiKTEIkazaoAFpTKDejWBaL7W5VpthUkQOl67IyX+ohuUKTo
		248
		249	~-~-~-~--END CERTIFICATE~-~-~-~--}
		250
		251	(% style="color:red" %)Note: Be sure to add a terminator "}" at the end of the command. Otherwise, the command will not execute successfully.
		252
		253	[[image:image-20240528174630-16.png\|\|height="553" width="747"]]
		254
		255	Display (% style="color:blue" %)"Successfully configured client certificate."(%%) Configuration successful, otherwise configuration failed.
		256
		257
		258	=== 4.2.3 Configure client private key ===
		259
		260
		261	Use the AT command AT+CLIKEY, as shown below
		262
		263	AT+CLIKEY=~-~-~-~--BEGIN RSA PRIVATE KEY~-~-~-~--
		264
		265	MIIEpAIBAAKCAQEAxN1zUZAtUGiEB4IkPqfpZMUAWvKBNyH3RrnBSvZuGVW4PG8S
		266
		267	EQo1ya7m84KjlqCZ8tZvZULGB7OC9A4FhDzWhOpck12Xi1LQMgJ+pv+iBUdYYdFq
		268
		269	jrtfKFs80FLSP+cI9MgiTr780F5g86Nob6m619cTtIYgRxzdF6+RiRQnHrL5Yfsw
		270
		271	uOPWa5+5cFVYgvVGt+shE/Dpq5WTt2FLmtQ29hwlrtB3qCkCHUPM+PtkQKu/t8Qg
		272
		273	gEMSxJg7LpOha3OoYhVwgAcEN85EHQdyb43vAbcoN/rU/hpaQuWQ/mlFRpQhB1Vu
		274
		275	XGCKebHYrefy39Y/tBx8hNrX3WuMRVUFeaRE6wIDAQABAoIBAFhAOcjvjBDGuaEw
		276
		277	CxV3al49HfqnSZuwg0xWSztSm2qKDcwxsnSnEhO2b1vsTW9h0YGV9Vv8gg/Dvkmv
		278
		279	23M7XqM4+IUraJsRZbl1etdcM4KQSCOZoF4Zyv+pXuq4pf31kQNCkHaikWzLUkUG
		280
		281	FPQxr0vA49mCYwfd/ZL3ppM/0IWmxRwloV1Gb9q8iDBUcJGSDokZnT7diUxzzOcd
		282
		283	+UJ6xUhFq1v46Y7vO+73XROLv34JEBC0bIw2ErL6+AbzhHwb2mkuSccG9Ks37g3Z
		284
		285	dyyjjj8hm1wvHWepuWqEssaiS3HD5zAsI0v85xS8RwNj3zLfd8o1WC666n3CO+ij
		286
		287	VdRmR4kCgYEA+/sEFxpfaRomqcLwJebZcZH06U1RfJFfnbH2/Q6fANf8zNxwWs9A
		288
		289	O+jyk/CLhHYRIk6VIOMQmWwEYgJ2eAHfw2Diwj4/0eqkGu+yZOS6KTCewxSV73vc
		290
		291	SvACramJy4y6yEgDN5onwR1XqfVMfA0LzTcSupHR/xvrpf/gCsNFPxUCgYEAyAFd
		292
		293	nMUhJFSq3pOogxA43aJSkA8YuDS3jpBkKQ6vx81APpIMabQauOxFDt488TZGP3Yy
		294
		295	lhpa/lfFIgu2K7CgV4dUp+JtJJoZ/F+ExxUUzdqB4zxzWywAcc3RebfwP6qASwFT
		296
		297	G3mXYci4tgNWR+k5CSsuLXDk/OT5uo5GeGAEc/8CgYEAk6V8uxDP8STKnNRFpN/E
		298
		299	b6CHciDE64m/DgbWY2cq0fK9BUjxaLRhvfj8EqVzCrWnyoNjLHcAJfW+B7PLuPvY
		300
		301	IoJlvE1/Vb/4UnQ7ApVnY3VCwaoRRNc9uIcz+pAJ1sRqOarAf9cLDkPkNwktvM5k
		302
		303	KOXpSnrhIms4w/bPT18l9xUCgYBsAMDKbXEuK0JyGw5+Z/4tQQCQpnZU0rLkm3ha
		304
		305	64FkxaORplBprEZZ4cyQ8NW78/EPSAadI/JLMp5TejuPcDvFyGCgoBcMEuNBc1tC
		306
		307	HlIzr3FAgl5Qt3wt+FTMA9YKq0nINxjn10s2FKwaLccj4f9YwiaXh0VAg22PnlDT
		308
		309	pBYDhQKBgQCMwyKXJ4zYiDRdvLvgKzeuKaU4KNQItHE4KORPfkecjPoENt4bKxDw
		310
		311	2EdNFQLIoqBHL1s+/8+SzhCI31V7pkTs1AqCxDExJS7+8Z5NQFQIo/jooUo0N80E
		312
		313	y3ZZS6OLOXXscEqhMogf1grfbabXM9OkgTIq43cPQHtMGQiFAtIJkg==
		314
		315	~-~-~-~--END RSA PRIVATE KEY~-~-~-~--}
		316
		317	(% style="color:red" %)Note: Be sure to add a terminator "}" at the end of the command. Otherwise, the command will not execute successfully.
		318
		319	[[image:image-20240528174702-17.png]]
		320
		321	Display(% style="color:blue" %) "Successfully configured client private key."(%%) If the configuration is successful, otherwise it is considered configuration failure.
		322
		323
		324	=== 4.3.3 Re-upgrade the firmware ===
		325
		326
		327	After the certificate configuration is completed, Re-upgrade to the firmware you originally used.
		328
		329
		330	= 5. Configure draginoNB-device =
		331
		332	== 5.1 Configure the data format sent by the device ==
		333
		334
		335	AT+PRO=3,5(Data is in Json format of MQTT)
		336
		337
		338	== 5.2 Set server address ==
		339
		340
		341	AT+SERVADDR=an5tk94sdgjat-ats.iot.us-east-1.amazonaws.com,8883
		342
		343
		344	== 5.3 Set up private and public topics ==
		345
		346
		347	AWS does not limit topics, so you can set any topic
		348
		349	AT+SUBTOPIC=Any
		350
		351	AT+PUBTOPIC=Any
		352
		353
		354	== 5.4 Set the TLS mode ==
		355
		356
		357	AT+TLSMOD=1,2
		358
		359	To use the TLS mode certificate function, users need to configure the AT+TLSMOD command
		360
		361	AT+TLSMOD=1,0 No authentication
		362
		363	AT+TLSMOD=1,1 Perform server authentication
		364
		365	AT+TLSMOD=1,2 Perform server and client authentication if requested by the remote server.（In AWS we recommend using this mode）
		366
		367
		368	Restart the device
		369
		370
		371	= 6. View data on AWS =
		372
		373	== 6.1 Find MQTT test client in test ==
		374
		375
		376	In the fourth step, fill in the topics you subscribed to before
		377
		378	AT+PUBTOPIC=XXXX
		379
		380	If you forget your previous topic, you can fill in #,subscribe to all topics
		381
		382	[[image:image-20240528175111-18.png\|\|height="409" width="1014"]]
		383
		384
		385	== 6.2 The data published information in Subscriptions ==
		386
		387
		388	[[image:image-20240528175133-19.png\|\|height="563" width="1022"]]
		389
		390	[[image:image-20240528175154-20.png\|\|height="752" width="1042"]]
		391
		392