Version 27.1 by kai on 2024/08/14 15:56
Show last authors
1 **Table of Contents: **
2
3 {{toc/}}
4
5
6
7
8
9
10
11
12
13
14 = 1. Log in to the platform and find IoT core =
15
16
17 = 2. Create your own test policy =
18
19 == 2.1 First click the policy on the left, enter the page and click Create policy ==
20
21
22 [[image:image-20240528172927-2.png||height="377" width="931"]]
23
24
25 == 2.2 After filling in a policy name for testing, the policy will be displayed on the page ==
26
27
28 a. Fill in any name
29
30 b. Configure the policy you created
31
32 [[image:image-20240528173144-3.png||height="572" width="931"]]
33
34
35 c. After clicking to enter the policy configuration page, follow the clicking sequence below to go to the json configuration interface, and then fill in the following fields in the "statement" keyword:
36
37
38 **{**
39
40 **~ "Version": "2012-10-17",**
41
42 **~ "Statement": [**
43
44 **~ {**
45
46 **~ "Effect": "Allow",**
47
48 **~ "Action": "",**
49
50 **~ "Resource": ""**
51
52 **~ }**
53
54 **~ ]**
55
56 **}**
57
58
59 [[image:image-20240528173203-4.png||height="517" width="942"]]
60
61
62 d. Create this policy
63
64
65 = 3. Create a Things =
66
67 == 3.1 Create a single Things ==
68
69
70 (% style="color:blue" %)**1. Select Create Things**
71
72 [[image:image-20240528173244-5.png||height="329" width="932"]]
73
74 [[image:image-20240528173500-6.png||height="484" width="928"]]
75
76
77 (% style="color:blue" %)**2. Fill in the name of the control item you want to create in the thing name column**
78
79 Use the default for other parameters
80
81 Then click Next.
82
83 [[image:image-20240528173754-7.png||height="712" width="781"]]
84
85
86 (% style="color:blue" %)**3. Choose to automatically generate a new certificate**
87
88 Then click Next
89
90 [[image:image-20240528173829-8.png||height="547" width="782"]]
91
92
93 (% style="color:blue" %)**4. The next step is to choose a strategy**
94
95 Here you can choose a policy we created in the first step
96
97 [[image:image-20240528173851-9.png||height="580" width="785"]]
98
99
100 (% style="color:blue" %)**5. When you click to create things, the certificate download page will pop up**
101
102
103 **This certificate is very important.** After creating the device, you must download the certificate of the device so that our NB device can connect normally.
104
105 Please download all the following certificates and put them in a folder.
106
107 [[image:image-20240528173926-10.png]]
108
109
110 (% style="color:blue" %)**6. You can see the things you just created in the things**
111
112 [[image:image-20240528173951-11.png||height="381" width="1089"]]
113
114
115 = 4. Connect to AWS using Dragino-NB device =
116
117 == 4.1 For -NB /-NS model ==
118
119 === 4.1.1 Upgrade the firmware to configure TTS firmware to set the certificate ===
120
121
122 User can change device firmware to::
123
124 * Update with new features.
125
126 * Fix bugs.
127
128 Firmware and changelog can be downloaded from : **[[Set up TLS certificate - Dropbox>>https://www.dropbox.com/scl/fo/1ykfsesmr3702tj3kp663/AOOyH1GiVEOGR41gASuiDk0?rlkey=1q7a1b5yvjgt87d16w8tt0cum&st=vdy765ut&dl=0||data-sider-select-id="830d1b64-cb24-48b3-91e4-49da5c3f0783"]]**
129
130 Methods to Update Firmware:
131
132 * (Recommended way) OTA firmware update via BLE: [[**Instruction**>>url:http://wiki.dragino.com/xwiki/bin/view/Main/BLE_Firmware_Update_NB_Sensors_BC660K-GL/]].
133
134 * Update through UART TTL interface : **[[Instruction>>url:http://wiki.dragino.com/xwiki/bin/view/Main/UART_Access_for_NB_ST_BC660K-GL/#H4.2UpdateFirmware28Assumethedevicealreadyhaveabootloader29]]**.
135
136 === 4.1.2 Configure certificate ===
137
138 (% style="color:red" %)**Note: **(%%)In order to avoid problems with certificate writing, you need to set the serial port assistant to automatically add a newline character when sending commands, if there is no such newline character, the certificate written will be invalid.(Using the serial port assistant as an example)
139
140 [[image:image-20240814155410-1.png||height="328" width="563"]]
141
142 After upgrade the firmware, the serial port displays as follows:
143
144 [[image:image-20240528174330-13.png||height="286" width="568"]]
145
146
147 ==== 4.1.2.1  Configure CA certificate ====
148
149
150 Please input the certificate in PEM format for the user.
151
152 Use the AT command AT+CACERT as follows:
153
154 AT+CACERT=~-~-~-~--BEGIN CERTIFICATE~-~-~-~--
155
156 MIIDQTCCAimgAwIBAgITBmyfz5m/jAo54vB4ikPmljZbyjANBgkqhkiG9w0BAQsF
157
158 ADA5MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRkwFwYDVQQDExBBbWF6
159
160 b24gUm9vdCBDQSAxMB4XDTE1MDUyNjAwMDAwMFoXDTM4MDExNzAwMDAwMFowOTEL
161
162 MAkGA1UEBhMCVVMxDzANBgNVBAoTBkFtYXpvbjEZMBcGA1UEAxMQQW1hem9uIFJv
163
164 b3QgQ0EgMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALJ4gHHKeNXj
165
166 ca9HgFB0fW7Y14h29Jlo91ghYPl0hAEvrAIthtOgQ3pOsqTQNroBvo3bSMgHFzZM
167
168 9O6II8c+6zf1tRn4SWiw3te5djgdYZ6k/oI2peVKVuRF4fn9tBb6dNqcmzU5L/qw
169
170 IFAGbHrQgLKm+a/sRxmPUDgH3KKHOVj4utWp+UhnMJbulHheb4mjUcAwhmahRWa6
171
172 VOujw5H5SNz/0egwLX0tdHA114gk957EWW67c4cX8jJGKLhD+rcdqsq08p8kDi1L
173
174 93FcXmn/6pUCyziKrlA4b9v7LWIbxcceVOF34GfID5yHI9Y/QCB/IIDEgEw+OyQm
175
176 jgSubJrIqg0CAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMC
177
178 AYYwHQYDVR0OBBYEFIQYzIU07LwMlJQuCFmcx7IQTgoIMA0GCSqGSIb3DQEBCwUA
179
180 A4IBAQCY8jdaQZChGsV2USggNiMOruYou6r4lK5IpDB/G/wkjUu0yKGX9rbxenDI
181
182 U5PMCCjjmCXPI6T53iHTfIUJrU6adTrCC2qJeHZERxhlbI1Bjjt/msv0tadQ1wUs
183
184 N+gDS63pYaACbvXy8MWy7Vu33PqUXHeeE6V/Uq2V8viTO96LXFvKWlJbYK8U90vv
185
186 o/ufQJVtMVT8QtPHRh8jrdkPSHCa2XV4cdFyQzR1bldZwgJcJmApzyMZFo6IQ6XU
187
188 5MsI+yMRQ+hDKXJioaldXgjUkK642M4UwtBV8ob2xJNDd2ZhwLnoQdeXeGADbkpy
189
190 rqXRfboQnoZsG4q5WTP468SQvvG5
191
192 ~-~-~-~--END CERTIFICATE~-~-~-~--}
193
194 (% style="color:red" %)**Note: Be sure to add a terminator "}" at the end of the command. Otherwise, the command will not execute successfully.**
195
196 [[image:image-20240528174408-14.png]]
197
198
199 After successful execution, as shown in the following figure.
200
201 [[image:image-20240528174502-15.png]]
202
203 Display (% style="color:blue" %)**"Successfully configured CA certificate."**(%%) If the configuration is successful, otherwise it is considered configuration failure.
204
205
206 ==== 4.1.2.2 Configure client certificate ====
207
208
209 Use the AT command AT+CLICERT as follows:
210
211 AT+CLICERT=~-~-~-~--BEGIN CERTIFICATE~-~-~-~--
212
213 MIIDWTCCAkGgAwIBAgIUYSpJUzfb4NTa76JJxd2th0fZA8swDQYJKoZIhvcNAQEL
214
215 BQAwTTFLMEkGA1UECwxCQW1hem9uIFdlYiBTZXJ2aWNlcyBPPUFtYXpvbi5jb20g
216
217 SW5jLiBMPVNlYXR0bGUgU1Q9V2FzaGluZ3RvbiBDPVVTMB4XDTI0MDUyNDA4MDI0
218
219 NVoXDTQ5MTIzMTIzNTk1OVowHjEcMBoGA1UEAwwTQVdTIElvVCBDZXJ0aWZpY2F0
220
221 ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMTdc1GQLVBohAeCJD6n
222
223 6WTFAFrygTch90a5wUr2bhlVuDxvEhEKNcmu5vOCo5agmfLWb2VCxgezgvQOBYQ8
224
225 1oTqXJNdl4tS0DICfqb/ogVHWGHRao67XyhbPNBS0j/nCPTIIk6+/NBeYPOjaG+p
226
227 utfXE7SGIEcc3RevkYkUJx6y+WH7MLjj1mufuXBVWIL1RrfrIRPw6auVk7dhS5rU
228
229 NvYcJa7Qd6gpAh1DzPj7ZECrv7fEIIBDEsSYOy6ToWtzqGIVcIAHBDfORB0Hcm+N
230
231 7wG3KDf61P4aWkLlkP5pRUaUIQdVblxginmx2K3n8t/WP7QcfITa191rjEVVBXmk
232
233 ROsCAwEAAaNgMF4wHwYDVR0jBBgwFoAUs8Caohh1ZGP8kjSn3rtxJiJJ9IswHQYD
234
235 VR0OBBYEFCjwGwqD7FG9UCNm3wjFQX4HixzfMAwGA1UdEwEB/wQCMAAwDgYDVR0P
236
237 AQH/BAQDAgeAMA0GCSqGSIb3DQEBCwUAA4IBAQBgqI49a4PBQZYrFM63TX3EHgdd
238
239 N6Pj7AytjO+SrKNMCSo/OtIvhDTxOocr1vKrux1Tw5qmrllrIXLtlGtbmln5DS6a
240
241 DTCLrjwcIFIabLxpx5DPY1WSMYvL04SW7d4Y+3SxOFNRotDSiomr8eIIac0d3HE2
242
243 B5b0SnWZgWbrhjNUgvwo8l8tA9DOGIr2MeQ5kPjudOOiYSR3HC0v+jviBMV6VX8M
244
245 LHVH3CRshHDKBGpV1NZ1RAm9EY/oRGtSiMsyjRh6hegC0vehwVxaC4w9qG0ASkzz
246
247 42OOGfNqhYnYDiKTEIkazaoAFpTKDejWBaL7W5VpthUkQOl67IyX+ohuUKTo
248
249 ~-~-~-~--END CERTIFICATE~-~-~-~--}
250
251 (% style="color:red" %)**Note: Be sure to add a terminator "}" at the end of the command. Otherwise, the command will not execute successfully.**
252
253 [[image:image-20240528174630-16.png||height="553" width="747"]]
254
255 Display (% style="color:blue" %)**"Successfully configured client certificate."**(%%) Configuration successful, otherwise configuration failed.
256
257
258 ==== 4.1.2.3 Configure client private key ====
259
260
261 Use the AT command AT+CLIKEY, as shown below
262
263 AT+CLIKEY=~-~-~-~--BEGIN RSA PRIVATE KEY~-~-~-~--
264
265 MIIEpAIBAAKCAQEAxN1zUZAtUGiEB4IkPqfpZMUAWvKBNyH3RrnBSvZuGVW4PG8S
266
267 EQo1ya7m84KjlqCZ8tZvZULGB7OC9A4FhDzWhOpck12Xi1LQMgJ+pv+iBUdYYdFq
268
269 jrtfKFs80FLSP+cI9MgiTr780F5g86Nob6m619cTtIYgRxzdF6+RiRQnHrL5Yfsw
270
271 uOPWa5+5cFVYgvVGt+shE/Dpq5WTt2FLmtQ29hwlrtB3qCkCHUPM+PtkQKu/t8Qg
272
273 gEMSxJg7LpOha3OoYhVwgAcEN85EHQdyb43vAbcoN/rU/hpaQuWQ/mlFRpQhB1Vu
274
275 XGCKebHYrefy39Y/tBx8hNrX3WuMRVUFeaRE6wIDAQABAoIBAFhAOcjvjBDGuaEw
276
277 CxV3al49HfqnSZuwg0xWSztSm2qKDcwxsnSnEhO2b1vsTW9h0YGV9Vv8gg/Dvkmv
278
279 23M7XqM4+IUraJsRZbl1etdcM4KQSCOZoF4Zyv+pXuq4pf31kQNCkHaikWzLUkUG
280
281 FPQxr0vA49mCYwfd/ZL3ppM/0IWmxRwloV1Gb9q8iDBUcJGSDokZnT7diUxzzOcd
282
283 +UJ6xUhFq1v46Y7vO+73XROLv34JEBC0bIw2ErL6+AbzhHwb2mkuSccG9Ks37g3Z
284
285 dyyjjj8hm1wvHWepuWqEssaiS3HD5zAsI0v85xS8RwNj3zLfd8o1WC666n3CO+ij
286
287 VdRmR4kCgYEA+/sEFxpfaRomqcLwJebZcZH06U1RfJFfnbH2/Q6fANf8zNxwWs9A
288
289 O+jyk/CLhHYRIk6VIOMQmWwEYgJ2eAHfw2Diwj4/0eqkGu+yZOS6KTCewxSV73vc
290
291 SvACramJy4y6yEgDN5onwR1XqfVMfA0LzTcSupHR/xvrpf/gCsNFPxUCgYEAyAFd
292
293 nMUhJFSq3pOogxA43aJSkA8YuDS3jpBkKQ6vx81APpIMabQauOxFDt488TZGP3Yy
294
295 lhpa/lfFIgu2K7CgV4dUp+JtJJoZ/F+ExxUUzdqB4zxzWywAcc3RebfwP6qASwFT
296
297 G3mXYci4tgNWR+k5CSsuLXDk/OT5uo5GeGAEc/8CgYEAk6V8uxDP8STKnNRFpN/E
298
299 b6CHciDE64m/DgbWY2cq0fK9BUjxaLRhvfj8EqVzCrWnyoNjLHcAJfW+B7PLuPvY
300
301 IoJlvE1/Vb/4UnQ7ApVnY3VCwaoRRNc9uIcz+pAJ1sRqOarAf9cLDkPkNwktvM5k
302
303 KOXpSnrhIms4w/bPT18l9xUCgYBsAMDKbXEuK0JyGw5+Z/4tQQCQpnZU0rLkm3ha
304
305 64FkxaORplBprEZZ4cyQ8NW78/EPSAadI/JLMp5TejuPcDvFyGCgoBcMEuNBc1tC
306
307 HlIzr3FAgl5Qt3wt+FTMA9YKq0nINxjn10s2FKwaLccj4f9YwiaXh0VAg22PnlDT
308
309 pBYDhQKBgQCMwyKXJ4zYiDRdvLvgKzeuKaU4KNQItHE4KORPfkecjPoENt4bKxDw
310
311 2EdNFQLIoqBHL1s+/8+SzhCI31V7pkTs1AqCxDExJS7+8Z5NQFQIo/jooUo0N80E
312
313 y3ZZS6OLOXXscEqhMogf1grfbabXM9OkgTIq43cPQHtMGQiFAtIJkg==
314
315 ~-~-~-~--END RSA PRIVATE KEY~-~-~-~--}
316
317 (% style="color:red" %)**Note: Be sure to add a terminator "}" at the end of the command. Otherwise, the command will not execute successfully.**
318
319 [[image:image-20240528174702-17.png]]
320
321 Display(% style="color:blue" %)** "Successfully configured client private key."**(%%) If the configuration is successful, otherwise it is considered configuration failure.
322
323
324 ==== 4.1.2.4 Re-upgrade the firmware ====
325
326
327 After the certificate configuration is completed, Re-upgrade to the firmware you originally used.
328
329
330 == 4.2  For -CB /-CS model ==
331
332 === 4.2.1 Upgrade the firmware to configure TTS firmware to set the certificate ===
333
334
335 User can change device firmware to::
336
337 * Update with new features.
338
339 * Fix bugs.
340
341 Firmware and changelog can be downloaded from : **[[Set up TLS certificate - Dropbox>>https://www.dropbox.com/scl/fo/mk9u5ux3cfo94ke0s67ik/ADOIOdwIQfCO2WUZt0MxXyU?rlkey=7o6uaywrebbnsvuj4r0r694x6&st=smrmjj7t&dl=0||data-sider-select-id="830d1b64-cb24-48b3-91e4-49da5c3f0783"]]**
342
343 Methods to Update Firmware:
344
345 * (Recommended way) OTA firmware update via BLE: [[**Instruction**>>url:http://wiki.dragino.com/xwiki/bin/view/Main/BLE_Firmware_Update_NB_Sensors_BC660K-GL/]].
346
347 * Update through UART TTL interface : **[[Instruction>>url:http://wiki.dragino.com/xwiki/bin/view/Main/UART_Access_for_NB_ST_BC660K-GL/#H4.2UpdateFirmware28Assumethedevicealreadyhaveabootloader29]]**.
348
349 === 4.2.2 Configure certificate ===
350
351
352 After upgrade the firmware, the serial port displays as follows:
353
354 [[image:image-20240528174330-13.png||height="286" width="568"]]
355
356
357 ==== 4.2.2.1 Configure CA certificate ====
358
359 (% style="color:red" %)**Note:You should select one of the certificates.Either CA1 or CA3 can be used**
360
361 Please input the certificate in PEM format for the user.
362
363 Use the AT command AT+CACERT as follows:
364
365 AT+CACERT=~-~-~-~--BEGIN CERTIFICATE~-~-~-~--
366
367 MIIDQTCCAimgAwIBAgITBmyfz5m/jAo54vB4ikPmljZbyjANBgkqhkiG9w0BAQsF
368
369 ADA5MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRkwFwYDVQQDExBBbWF6
370
371 b24gUm9vdCBDQSAxMB4XDTE1MDUyNjAwMDAwMFoXDTM4MDExNzAwMDAwMFowOTEL
372
373 MAkGA1UEBhMCVVMxDzANBgNVBAoTBkFtYXpvbjEZMBcGA1UEAxMQQW1hem9uIFJv
374
375 b3QgQ0EgMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALJ4gHHKeNXj
376
377 ca9HgFB0fW7Y14h29Jlo91ghYPl0hAEvrAIthtOgQ3pOsqTQNroBvo3bSMgHFzZM
378
379 9O6II8c+6zf1tRn4SWiw3te5djgdYZ6k/oI2peVKVuRF4fn9tBb6dNqcmzU5L/qw
380
381 IFAGbHrQgLKm+a/sRxmPUDgH3KKHOVj4utWp+UhnMJbulHheb4mjUcAwhmahRWa6
382
383 VOujw5H5SNz/0egwLX0tdHA114gk957EWW67c4cX8jJGKLhD+rcdqsq08p8kDi1L
384
385 93FcXmn/6pUCyziKrlA4b9v7LWIbxcceVOF34GfID5yHI9Y/QCB/IIDEgEw+OyQm
386
387 jgSubJrIqg0CAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMC
388
389 AYYwHQYDVR0OBBYEFIQYzIU07LwMlJQuCFmcx7IQTgoIMA0GCSqGSIb3DQEBCwUA
390
391 A4IBAQCY8jdaQZChGsV2USggNiMOruYou6r4lK5IpDB/G/wkjUu0yKGX9rbxenDI
392
393 U5PMCCjjmCXPI6T53iHTfIUJrU6adTrCC2qJeHZERxhlbI1Bjjt/msv0tadQ1wUs
394
395 N+gDS63pYaACbvXy8MWy7Vu33PqUXHeeE6V/Uq2V8viTO96LXFvKWlJbYK8U90vv
396
397 o/ufQJVtMVT8QtPHRh8jrdkPSHCa2XV4cdFyQzR1bldZwgJcJmApzyMZFo6IQ6XU
398
399 5MsI+yMRQ+hDKXJioaldXgjUkK642M4UwtBV8ob2xJNDd2ZhwLnoQdeXeGADbkpy
400
401 rqXRfboQnoZsG4q5WTP468SQvvG5
402
403 ~-~-~-~--END CERTIFICATE~-~-~-~--}
404
405 (% style="color:red" %)**Note: Be sure to add a terminator "}" at the end of the command. Otherwise, the command will not execute successfully.**
406
407 [[image:image-20240528174408-14.png]]
408
409
410 After successful execution, as shown in the following figure.
411
412 [[image:image-20240528174502-15.png]]
413
414 Display (% style="color:blue" %)**"Successfully configured CA certificate."**(%%) If the configuration is successful, otherwise it is considered configuration failure.
415
416
417 ==== 4.2.2.2 Configure client certificate ====
418
419
420 Use the AT command AT+CLICERT as follows:
421
422 AT+CLICERT=~-~-~-~--BEGIN CERTIFICATE~-~-~-~--
423
424 MIIDWTCCAkGgAwIBAgIUYSpJUzfb4NTa76JJxd2th0fZA8swDQYJKoZIhvcNAQEL
425
426 BQAwTTFLMEkGA1UECwxCQW1hem9uIFdlYiBTZXJ2aWNlcyBPPUFtYXpvbi5jb20g
427
428 SW5jLiBMPVNlYXR0bGUgU1Q9V2FzaGluZ3RvbiBDPVVTMB4XDTI0MDUyNDA4MDI0
429
430 NVoXDTQ5MTIzMTIzNTk1OVowHjEcMBoGA1UEAwwTQVdTIElvVCBDZXJ0aWZpY2F0
431
432 ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMTdc1GQLVBohAeCJD6n
433
434 6WTFAFrygTch90a5wUr2bhlVuDxvEhEKNcmu5vOCo5agmfLWb2VCxgezgvQOBYQ8
435
436 1oTqXJNdl4tS0DICfqb/ogVHWGHRao67XyhbPNBS0j/nCPTIIk6+/NBeYPOjaG+p
437
438 utfXE7SGIEcc3RevkYkUJx6y+WH7MLjj1mufuXBVWIL1RrfrIRPw6auVk7dhS5rU
439
440 NvYcJa7Qd6gpAh1DzPj7ZECrv7fEIIBDEsSYOy6ToWtzqGIVcIAHBDfORB0Hcm+N
441
442 7wG3KDf61P4aWkLlkP5pRUaUIQdVblxginmx2K3n8t/WP7QcfITa191rjEVVBXmk
443
444 ROsCAwEAAaNgMF4wHwYDVR0jBBgwFoAUs8Caohh1ZGP8kjSn3rtxJiJJ9IswHQYD
445
446 VR0OBBYEFCjwGwqD7FG9UCNm3wjFQX4HixzfMAwGA1UdEwEB/wQCMAAwDgYDVR0P
447
448 AQH/BAQDAgeAMA0GCSqGSIb3DQEBCwUAA4IBAQBgqI49a4PBQZYrFM63TX3EHgdd
449
450 N6Pj7AytjO+SrKNMCSo/OtIvhDTxOocr1vKrux1Tw5qmrllrIXLtlGtbmln5DS6a
451
452 DTCLrjwcIFIabLxpx5DPY1WSMYvL04SW7d4Y+3SxOFNRotDSiomr8eIIac0d3HE2
453
454 B5b0SnWZgWbrhjNUgvwo8l8tA9DOGIr2MeQ5kPjudOOiYSR3HC0v+jviBMV6VX8M
455
456 LHVH3CRshHDKBGpV1NZ1RAm9EY/oRGtSiMsyjRh6hegC0vehwVxaC4w9qG0ASkzz
457
458 42OOGfNqhYnYDiKTEIkazaoAFpTKDejWBaL7W5VpthUkQOl67IyX+ohuUKTo
459
460 ~-~-~-~--END CERTIFICATE~-~-~-~--}
461
462 (% style="color:red" %)**Note: Be sure to add a terminator "}" at the end of the command. Otherwise, the command will not execute successfully.**
463
464 [[image:image-20240528174630-16.png||height="553" width="747"]]
465
466 Display (% style="color:blue" %)**"Successfully configured client certificate."**(%%) Configuration successful, otherwise configuration failed.
467
468
469 ==== 4.2.2.3 Configure client private key ====
470
471
472 Use the AT command AT+CLIKEY, as shown below
473
474 AT+CLIKEY=~-~-~-~--BEGIN RSA PRIVATE KEY~-~-~-~--
475
476 MIIEpAIBAAKCAQEAxN1zUZAtUGiEB4IkPqfpZMUAWvKBNyH3RrnBSvZuGVW4PG8S
477
478 EQo1ya7m84KjlqCZ8tZvZULGB7OC9A4FhDzWhOpck12Xi1LQMgJ+pv+iBUdYYdFq
479
480 jrtfKFs80FLSP+cI9MgiTr780F5g86Nob6m619cTtIYgRxzdF6+RiRQnHrL5Yfsw
481
482 uOPWa5+5cFVYgvVGt+shE/Dpq5WTt2FLmtQ29hwlrtB3qCkCHUPM+PtkQKu/t8Qg
483
484 gEMSxJg7LpOha3OoYhVwgAcEN85EHQdyb43vAbcoN/rU/hpaQuWQ/mlFRpQhB1Vu
485
486 XGCKebHYrefy39Y/tBx8hNrX3WuMRVUFeaRE6wIDAQABAoIBAFhAOcjvjBDGuaEw
487
488 CxV3al49HfqnSZuwg0xWSztSm2qKDcwxsnSnEhO2b1vsTW9h0YGV9Vv8gg/Dvkmv
489
490 23M7XqM4+IUraJsRZbl1etdcM4KQSCOZoF4Zyv+pXuq4pf31kQNCkHaikWzLUkUG
491
492 FPQxr0vA49mCYwfd/ZL3ppM/0IWmxRwloV1Gb9q8iDBUcJGSDokZnT7diUxzzOcd
493
494 +UJ6xUhFq1v46Y7vO+73XROLv34JEBC0bIw2ErL6+AbzhHwb2mkuSccG9Ks37g3Z
495
496 dyyjjj8hm1wvHWepuWqEssaiS3HD5zAsI0v85xS8RwNj3zLfd8o1WC666n3CO+ij
497
498 VdRmR4kCgYEA+/sEFxpfaRomqcLwJebZcZH06U1RfJFfnbH2/Q6fANf8zNxwWs9A
499
500 O+jyk/CLhHYRIk6VIOMQmWwEYgJ2eAHfw2Diwj4/0eqkGu+yZOS6KTCewxSV73vc
501
502 SvACramJy4y6yEgDN5onwR1XqfVMfA0LzTcSupHR/xvrpf/gCsNFPxUCgYEAyAFd
503
504 nMUhJFSq3pOogxA43aJSkA8YuDS3jpBkKQ6vx81APpIMabQauOxFDt488TZGP3Yy
505
506 lhpa/lfFIgu2K7CgV4dUp+JtJJoZ/F+ExxUUzdqB4zxzWywAcc3RebfwP6qASwFT
507
508 G3mXYci4tgNWR+k5CSsuLXDk/OT5uo5GeGAEc/8CgYEAk6V8uxDP8STKnNRFpN/E
509
510 b6CHciDE64m/DgbWY2cq0fK9BUjxaLRhvfj8EqVzCrWnyoNjLHcAJfW+B7PLuPvY
511
512 IoJlvE1/Vb/4UnQ7ApVnY3VCwaoRRNc9uIcz+pAJ1sRqOarAf9cLDkPkNwktvM5k
513
514 KOXpSnrhIms4w/bPT18l9xUCgYBsAMDKbXEuK0JyGw5+Z/4tQQCQpnZU0rLkm3ha
515
516 64FkxaORplBprEZZ4cyQ8NW78/EPSAadI/JLMp5TejuPcDvFyGCgoBcMEuNBc1tC
517
518 HlIzr3FAgl5Qt3wt+FTMA9YKq0nINxjn10s2FKwaLccj4f9YwiaXh0VAg22PnlDT
519
520 pBYDhQKBgQCMwyKXJ4zYiDRdvLvgKzeuKaU4KNQItHE4KORPfkecjPoENt4bKxDw
521
522 2EdNFQLIoqBHL1s+/8+SzhCI31V7pkTs1AqCxDExJS7+8Z5NQFQIo/jooUo0N80E
523
524 y3ZZS6OLOXXscEqhMogf1grfbabXM9OkgTIq43cPQHtMGQiFAtIJkg==
525
526 ~-~-~-~--END RSA PRIVATE KEY~-~-~-~--}
527
528 (% style="color:red" %)**Note: Be sure to add a terminator "}" at the end of the command. Otherwise, the command will not execute successfully.**
529
530 [[image:image-20240528174702-17.png]]
531
532 Display(% style="color:blue" %)** "Successfully configured client private key."**(%%) If the configuration is successful, otherwise it is considered configuration failure.
533
534
535 ==== 4.2.2.4 For -CB /-CS model Certificate setting error/change certificate ====
536
537
538 (% data-sider-select-id="7c5a8abc-e707-467b-ac02-db0a89098320" %)When you set the wrong certificate or you need to re-set another certificate.
539 Please use the following three commands:
540
541 (% style="color:blue" %)**AT+DELCLIKEY}**
542
543 (% style="color:blue" %)**AT+DELCLICERT}**
544
545 (% style="color:blue" %)**AT+DELCACERT}**(%%)
546 (% style="color:blue" %)
547
548 (% style="color:red" %)**Note: 1.When there is no certificate on the device, a deletion error will be displayed.
549 2.When the device already has a certificate, using the command to configure the certificate again will display a configuration error.**
550
551
552 = (% data-sider-select-id="6b5deb69-539b-42e1-a7bc-a300eb1fea73" %)5. Configure draginoNB-device(%%) =
553
554 == 5.1 Configure the data format sent by the device ==
555
556
557 (% style="color:blue" %)**AT+PRO=3,5**(%%) (Data is in Json format of MQTT)
558
559
560 == 5.2 Set server address ==
561
562
563 (% style="color:blue" %)**AT+SERVADDR=an5tk94sdgjat-ats.iot.us-east-1.amazonaws.com,8883**
564
565
566 == 5.3 Set up private and public topics ==
567
568
569 AWS does not limit topics, so you can set any topic
570
571 (% style="color:blue" %)**AT+SUBTOPIC=Any**
572
573 (% style="color:blue" %)**AT+PUBTOPIC=Any**
574
575
576 == 5.4 Set the TLS mode ==
577
578
579 (% data-sider-select-id="cf7bb573-8375-4479-9801-df8bb7dab3ba" style="color:blue" %)**AT+TLSMOD=1,2**
580
581 To use the TLS mode certificate function, users need to configure the (% style="color:blue" %)**AT+TLSMOD**(%%) command.
582
583 (% style="color:blue" %)**AT+TLSMOD=1,0** (%%) ~/~/ No authentication
584
585 (% style="color:blue" %)**AT+TLSMOD=1,1** (%%) ~/~/ Perform server authentication
586
587 (% style="color:blue" %)**AT+TLSMOD=1,2** (%%) ~/~/ Perform server and client authentication if requested by the remote server.(In AWS we recommend using this mode)
588
589
590 (% data-sider-select-id="f443b9bc-1195-4fe2-965d-7de84f78747f" %)
591 == 5.5 Set the MQOS ==
592
593
594 (% data-sider-select-id="cf7bb573-8375-4479-9801-df8bb7dab3ba" style="color:blue; font-weight:bold" %)**AT+MQOS**(% data-sider-select-id="cf7bb573-8375-4479-9801-df8bb7dab3ba" style="color:blue" %)**=XX (Depends on your server configuration)**
595
596 Please find it in AWS's MQTT test client
597
598 [[image:image-20240529164339-1.png||height="480" width="927"]]
599
600
601 (% data-sider-select-id="fef22158-6e5e-46e4-b59e-fe457e562376" %)
602 == 5.6 Restart the device ==
603
604
605 = 6. View data on AWS =
606
607 == 6.1 Find MQTT test client in test ==
608
609
610 In the fourth step, fill in the topics you subscribed to before
611
612 (% style="color:blue" %)**AT+PUBTOPIC=XXXX**
613
614 If you forget your previous topic, you can fill in #,subscribe to all topics
615
616 [[image:image-20240528175111-18.png||height="409" width="1014"]]
617
618
619 == 6.2 The data published information in Subscriptions ==
620
621
622 [[image:image-20240528175133-19.png||height="563" width="1022"]]
623
624 [[image:image-20240528175154-20.png||height="752" width="1042"]]

Applications

Navigation

Copyright ©2010-2024 Dragino Technology Co., LTD. All rights reserved
Dragino Wiki v2.0