weixin_39735509
weixin_39735509
2020-12-27 01:17

Device Provisioning with x509 Group Enrollment

Hi i am using 1.1.32 version

i have question regarding Device Provisioning with x509 Group Enrollment in Group Enrollment using (CA or Intermediate) is it mandatory to upload the root CA certificate in Certificates & verify it ?

when i am tried without uploading the root-CA certificate in Certificates i am getting below error, when i am uploaded root -CA & verified , without any problem device was provisioned .

"i want to know like uploading the root-CA certificate in Certificates & verify is mandatory or not ?"

ansport_process_json_reply Line:387 Unsuccessful json encountered: {"operationId":"2.36e237c8db462f45.5977b369-ae65-413d-8c90-771c27c2ba65","status":"failed","registrationState":{"registrationId":"mydevice","createdDateTimeUtc":"2018-03-29T06:12:46.9462581Z","status":"failed","errorCode":401002,"errorMessage":"Invalid certificate","lastUpdatedDateTimeUtc":"2018-03-29T06:12:47.0558811Z","etag":"\"3300514a-0000-0000-0000-5abc83df0000\""}}

Regards lakshmisivareddy.challa

该提问来源于开源项目:Azure/azure-iot-sdk-c

  • 点赞
  • 写回答
  • 关注问题
  • 收藏
  • 复制链接分享
  • 邀请回答

6条回答

  • weixin_39645019 weixin_39645019 3月前

    What OS are you using? Group enrollment does not currently work using Windows Schannel due to it not sending the certificate chain on the TLS stream. If you are using Windows you must use OpenSSL to send the full chain to be validated by the service.

    点赞 评论 复制链接分享
  • weixin_39735509 weixin_39735509 3月前

    Hi thanks for response i am using linux device only

    点赞 评论 复制链接分享
  • weixin_39764487 weixin_39764487 3月前

    Hi , If you use Intermediate CA certificate in CA certificate and verify it then you will not face the issue.

    点赞 评论 复制链接分享
  • weixin_39645019 weixin_39645019 3月前

    You must upload the full chain excluding the root certificate. For example, you have a root CA cert which creates an intermediate Certificate which creates a leaf certificate. Then the tls stream will need to contain the Intermediate Cert and the Leaf Cert.

    Let me know if that is the answer you need.

    点赞 评论 复制链接分享
  • weixin_39735509 weixin_39735509 3月前

    Thanks for the support i tried as you said it is working for me

    点赞 评论 复制链接分享
  • weixin_39542936 weixin_39542936 3月前
    • thanks for letting us know. Changing this to area-docs so we can clarify this.
    点赞 评论 复制链接分享