-
Notifications
You must be signed in to change notification settings - Fork 455
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Using DPS SDK together witih IoT edge #55
Comments
Hello @nhuurnink, I am not sure there is a way to do this on the IoTHub. Symmetric keys and X.509 authentication seems to be an either/or propostion. Ideally, we'd want to provide you with X.509 DPS support on IoT Edge, which is a feature we very much want to support. One of the things I can do is make sure to communicate the need for it during planning. |
Thank you, that would be great, otherwise there isn't much use for IoT Edge in production scenarios where a TPM module is not guaranteed. I'm not going to provision 100k devices by hand :) |
Hey @darobs , I would highly appreciate any update or a tentative date on release of X. 509 certificate attestation for IOT Edge devices to enable automatic device provisioning. |
Hey @darobs |
We are bringing support for DPS's Symmetric Key attestation shortly (https://docs.microsoft.com/en-us/azure/iot-dps/how-to-legacy-device-symm-key). We are trying to get this in the February release. This method does not require a TPM. The x.509 certificate attestation is also in the plan, but requires some changes in the IoT Hub service to work effectively. At this point, the best guidance I can give is after February and before July. I'll update the thread here if this changes or becomes more concrete. |
Hi @myagley , the iot edge status 6月 28 16:55:06 raspberrypi systemd[1]: iotedge.service: Unit entered failed state. DPS symmetric key provisioning configurationprovisioning: |
Whats the status of X509 support for IoT Edge with DPS? |
@ilyas-it83 This support will be available in 1.0.9 release we're targeting for release by end of Sep. You can watch the azure-iotedge releases repo to get notified when the release goes live. |
@ilyas-it83 @nhuurnink closing issue, please re-open if necessary. |
Hi there,
I want to automatically provision my IoT Edge devices, but I don't have a TPM module on my devices.
So what I want to do is to use the device provisioning SDK to gain a connectionString, which I then paste in my configuration for IoT edge.
I've tried this with X509 certificates using https://github.com/Azure/azure-iot-sdk-csharp/tree/master/provisioning/device/samples , but I can only send messages to my IoT-Hub (after my device is assigned) using this certificate and I don't get a connection string returned. How can I make this work properly so I can use IoT Edge on an "already-x509-assigned" device?
The text was updated successfully, but these errors were encountered: