如何通过移动应用程序配置Azure IoT设备 [英] How to provision an Azure IoT device from a mobile app
问题描述
我的要求是开发一个移动应用程序,该应用程序本身将使用预配置服务在IoT中心中注册该移动设备.
My requirement is to develop a mobile app which itself register the mobile device in an IoT hub using provisioning services.
我正在使用react native和Azure IoT Java SDK开发移动应用程序.它将遥测数据发送到Azure IoT中心.但是,我不想对每个移动设备的IoT连接详细信息进行硬编码.
I am developing a mobile application using react native and Azure IoT Java SDK. It is to send telemetry data to Azure IoT hub. However I don't want to hard code the IoT connection details of each and every mobile devices.
我在那里遇到了IoT供应服务,该服务可用于以编程方式注册设备.我的计划是在安装或应用程序首次启动时注册设备.但是在线帮助来源提到,所有安全性证明都应由制造商来完成.
There I met the IoT provision services which can be used to register the devices programmatically. My plan was to register device upon the installation or at the first boot up of the app. But the online help sources mentions that all the security attestation should be done by the manufacturer.
似乎我应该在应用程序中存储x.509中间证书,并生成用于注册设备的叶证书.我觉得这是个坏主意.处理我的情况的正确方法是什么?
It seems I should store an x.509 intermediate certificate in the app and generate a leaf certificate to register the device. I feel this is a bad idea. What is the proper method to handle my situation?
推荐答案
您可以考虑使用对称密钥通过设备配置服务进行配置.以下是一些链接供您参考:
You can consider using symmetric key to provision via the Device Provisioning Service. Here are some links for your reference:
- Documentation on Symmetric Key
- Commit in the Java SDK that added symmetric key support
您还可以使用X.509证书.如果设备上具有叶子证书,则可以在设备配置服务中注册签名证书并使用注册组.
You can also use X.509 certificate. If you have the leaf certificate on the device, you can register the signing cert with the Device Provisioning Service and use enrollment group.
这篇关于如何通过移动应用程序配置Azure IoT设备的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
