We have some IOT MQTT clients connecting to a MQTT broker with SLL and enforcing the clients to have a matching cert to connect, dose that mean on yearly bases we need to update the cert in clients to match the updated Broker SSL? or it's not needed?
CodePudding user response:
The "valid from" and "valid until" dates are encoded into the certificate, so you will need to issue new certificates before the old one expires and find a way to deliver it to the actual device.
You can not just update a value "server side" and expect it to work.