Yandex.Cloud
  • Services
  • Why Yandex.Cloud
  • Pricing
  • Documentation
  • Contact us
Get started
Yandex IoT Core
  • Getting started
  • Step-by-step instructions
    • All instructions
    • Sending messages
    • Subscribing a device or registry to receive messages
    • Viewing the connection log
    • Creating a trigger for a topic
    • Managing registries
      • Getting information about registries
      • Creating a registry
      • Updating a registry
      • Deleting a registry
    • Managing devices
      • Managing topic aliases
        • Creating an alias
        • Getting a list of aliases
        • Updating an alias
        • Deleting an alias
      • Getting information about devices
      • Creating a device
      • Updating a device
      • Deleting a device
    • Managing certificates
      • Create a certificate
      • Managing registry certificates
      • Managing device certificates
    • Managing passwords
      • Managing registry passwords
      • Managing device passwords
  • Concepts
    • Authorization
    • Relationship between service resources
    • MQTT broker connection parameters
    • Sending messages to an MQTT broker via gRPC
    • Topic
    • Backups
    • Quotas and limits
  • Use cases
    • All use cases
    • Working with Mosquitto
      • Sending messages
      • Subscribing a device or registry to receive messages
    • Working with Yandex IoT Core from an Android device in Java
    • Working with Yandex IoT Core in C#
    • Working with Yandex IoT Core in Java
    • Writing data from a device to Managed Service for PostgreSQL
  • Access management
  • Pricing policy
  • API reference
    • Authentication in the API
    • gRPC
      • Overview
      • DeviceDataService
      • DeviceService
      • RegistryDataService
      • RegistryService
      • OperationService
    • REST
      • Overview
      • Device
        • Overview
        • addCertificate
        • addPassword
        • create
        • delete
        • deleteCertificate
        • deletePassword
        • get
        • list
        • listCertificates
        • listOperations
        • listPasswords
        • update
      • DeviceData
        • Overview
        • publish
      • Registry
        • Overview
        • addCertificate
        • addPassword
        • create
        • delete
        • deleteCertificate
        • deletePassword
        • get
        • list
        • listCertificates
        • listDeviceTopicAliases
        • listOperations
        • listPasswords
        • update
      • RegistryData
        • Overview
        • publish
  • Questions and answers
  1. Step-by-step instructions
  2. Managing certificates
  3. Managing device certificates

Managing device certificates

  • Getting a list of certificates
  • Adding a certificate
  • Deleting a certificate

For devices and registries to begin exchanging data and commands, you need to log in. This section describes how to manage device certificates for the relevant authorization method.

Note

When using an X.509 certificate along with a password, the password has higher priority.

  • Viewing a list of device certificates.
  • Adding a certificate to a device.
  • Deleting a device certificate.

To access a device, use its unique ID or name. For information about how to get its unique ID or name, see Getting information about devices.

Getting a list of certificates

Management console
CLI
API
  1. In the management console, select the folder where the device is located.
  2. Select the Yandex IoT Core.
  3. Select the registry where the device is located.
  4. Go to the Devices tab.
  5. Select the device.
  6. On the Overview page, go to the Certificates section.

If you don't have the Yandex.Cloud command line interface yet, install and initialize it.

The folder specified in the CLI profile is used by default. You can specify a different folder using the --folder-name or --folder-id parameter.

View the list of device certificates:

yc iot device certificate list --device-name my-device

Result:

+------------------------------------------+---------------------+
|               FINGERPRINT                |     CREATED AT      |
+------------------------------------------+---------------------+
| df3cc4f337eba01a264803d15b119e2d33943315 | 2019-05-29 17:14:36 |
| 65e5b050069da5ca5996a4a8a92514098b0a5dd1 | 2019-05-29 17:14:18 |
+------------------------------------------+---------------------+

You can get a list of device certificates using the listCertificates API method.

Adding a certificate

Management console
CLI

To add a device certificate:

  1. In the management console, select the folder where you want to add a device certificate.

  2. Select Yandex IoT Core.

  3. Click on the name of the registry.

  4. In the left menu, select Devices.

  5. Select the desired device from the list.

  6. On the Overview page, go to the Certificates section and click Add certificate.

    • To add a file:

      1. Choose the File method.
      2. Click Select file.
      3. Specify the certificate file on your computer and click Open.
      4. Click Add.
    • To add text:

      1. Choose the Text method.
      2. Insert the certificate body in the Contents field.
      3. Click Add.

If you don't have the Yandex.Cloud command line interface yet, install and initialize it.

Add a certificate to the device:

$ yc iot device certificate add \
--device-name my-device \ # Device name.
--certificate-file device-cert.pem # Path to the public part of the certificate.

device_id: b9135goeh1uc1s2i07nm
fingerprint: 65e5b050069da5ca5996a4a8a92514098b0a5dd1
certificate_data: |
  -----BEGIN CERTIFICATE-----
  MIIE/jCCAuagAwI...
  -----END CERTIFICATE-----
created_at: "2019-05-29T17:14:18.804Z"

Deleting a certificate

Management console
CLI

To delete a device certificate:

  1. In the management console, select the folder to delete the device certificate from.
  2. Select the Yandex IoT Core.
  3. Click on the name of the registry.
  4. In the left menu, select Devices.
  5. Select the desired device from the list.
  6. On the Overview page, go to the Certificates section.
  7. Click in the line with the appropriate certificate and select Delete from the drop-down list.
  8. In the window that opens, click Delete.

If you don't have the Yandex.Cloud command line interface yet, install and initialize it.

  1. Delete a device certificate:

    $ yc iot device certificate delete --device-name my-device --fingerprint 65...
    
  2. Make sure the certificate was deleted:

    $ yc iot device certificate list --device-name my-device
    +-------------+------------+
    | FINGERPRINT | CREATED AT |
    +-------------+------------+
    +-------------+------------+
    
In this article:
  • Getting a list of certificates
  • Adding a certificate
  • Deleting a certificate
Language
Careers
Privacy policy
Terms of use
© 2021 Yandex.Cloud LLC