In the next couple of days I’ll push a new release of both LoRa Server and LoRa App Server which will enable you to use client-side certificate authentication. Some certificate options are already available, but they were never fully implemented including client certificate authentication.
The flow in short:
- You generate a set of certificates
- You configure the LoRa Server API to use TLS (which will enable client certificate validation)
- You configure the LoRa App Server API to use TLS (same…)
Then when creating or updating the network-server entity, you enter both the client certificates for LoRa App Server to connect to LoRa Server and LoRa Server to connect back to LoRa App Server.
In preparation I’ve creates some script so that you can create all certificates with one
make command I’ll also update the documentation to document this feature.
Note this feature is not yet released, but will be available in the next days.