Generating Server Certificates and Synchronizing with Connected Controllers

In applications, existing networks can be protected by server certificates. The following steps provide an example of creating an MQTT network that incorporates this security aspect. For this purpose, protected communication between a server and an external communication partner (“node”) is created and put into operation.

  1. You need to have already created a solution that contains at least two entities of type “Controller.”
  1. Open your existing solution.
  2. In the “Solutions” menu, click the “Configuration” menu item.
  3. Select the root element in the tree structure.
  4. Click the “CERTIFICATES” tab.
  5. Click [+] to create a new certificate.
  6. The “Generate New Certificate” dialog opens.
  7. Select Certificate Authority from the “Role” drop-down menu.
  8. Click [Generate].

  9. Create a “Node” entity in the tree structure to form a higher-level communication group.
  10. Name this communication group “MQTT.”
  11. Click the “CERTIFICATES” tab.
  12. Click [+] to create a new certificate.
  13. The “Generate New Certificate” dialog opens.
  14. From the “Role” drop-down menu, select the Server Certificate.
  15. Click [Generate].

  16. Click the “Tag” tab.
  17. Define a new Certificate:MQTT tag.

  18. The Certificate:MQTT tag is defined in WAGO Solution Builder and assigned to the “MQTT” communication group.
  19. Assign this tag to all “Controller” entities that should be included in the “MQTT” communication group.

  20. Note

    Newly formed group structure is not visible!

    To keep the display manageable, the newly formed group structure is not visible. Nested structures can grow without limit, overloading a central tree structure.

    1. Use the search if you want to see all elements!
      For more information, see 8 “Filter“ Menu Item.
  21. Select the “MQTT” communication group in the tree structure.
  22. Click the “CERTIFICATES” tab.
  23. Select the server certificate (entry of type “CRT”) in the table.
  24. Click .

  25. The server certificate is distributed to all entities of type “Controller” that are included in the “MQTT” communication group.