Good day - I’ve searched through the forums and cannot find the answers I am looking for.
I’m looking to create the TLS certificate to use with my gateway. This is a chirpstack 4 docker installation. Communication with the gateway works fine.
I used chirpstack-certificates to generate the CA certs and added them to the configuration file under [gateway] per the documentation
[gateway]
# CA certificate and key file (optional).
#
# If setting the CA certificate and key file options, ChirpStack
# will generate client certificates which can be used by the gateway for
# authentication and authorization. The Common Name of the certificate will
# be set to the Gateway ID.
ca_key="/etc/chirpstack/ca-key.pem"
ca_cert="/etc/chirpstack/ca.pem"
# Certificate lifetime.
#
# This defines how long (after generating) the certificate remains valid.
client_cert_lifetime="11months 30days 3h 50m 24s"
# Allow unknown gateways.
#
# If set to true, then uplinks received from gateways not configured in
# ChirpStack will be allowed.
allow_unknown_gateways=false
In the ChirpStack web UI, under ** Gateways → TLS Certificate** I generated the CA certificate, the TLS certificate and the TLS key.
The instructions read:
The gateway client-certificate can be used to connect the gateway in case a client-certificate is required for authentication. Please note that this feature might not be available in case it has not been configured in the server configuration. After the certificate has been generated, store the content of the files on your gateway. **Please note the expiration of the certificate and make sure to renew the certificate on time!**
I’m using a tektelic micro gateway - which files get applied to the gateway and where on the file system should they reside?
Thanks and regards,
Peter