Reputation: 135
UWP on RPi - Trying to Provision to Azure - How to get X.509 certificate
I'm working with a RPi/UWP program (works well) that is signed with out X.509 certificate.
I have no problems connecting to Azure IoT hub if I manually provision the connection, but as we intend to ship these by the 100s, if not thousands, obviously that won't work.
I've looked at the code examples of using the provisioning service, but all of them are in the emulation.
Looking at the code, you have to load your X.509 certificate
certificateCollection.Import(s_certificateFileName, certificatePassword, X509KeyStorageFlags.UserKeySet);
This is where I get lost - Where on the RPi IS the certificate to load?
Basically, I THINK I understand how to do this in a plain Win10 app, but when you get to UWP on the RPi (a 3B, as the 3B+ is not supported - probably have to switch to Core) . Anyone have some sample code, or can point me in the right direction?
Upvotes: 0
Views: 72
Answers (1)
Reputation: 4432
This document provides an overview of the cryptography features available to UWP apps. You can generate the certificate file and then copy or import it to the device. If you copy the certificate file to device, you need to add capabilities for accessing the file to your UWP app. Please refer to this topic in MSDN forum. Following code can be used to import the pfx certificate into your device and then load it from cert store.
Import:
StorageFolder certificatesFolder = await Windows.ApplicationModel.Package.Current.InstalledLocation.GetFolderAsync("Certificates");
StorageFile certificateFile = await certificatesFolder.GetFileAsync("ClientCertificate .pfx ");
IBuffer certificateBuffer = await FileIO.ReadBufferAsync(certificateFile);
string encodedCertificate = Windows.Security.Cryptography.CryptographicBuffer.EncodeToBase64String(certificateBuffer);
await CertificateEnrollmentManager.ImportPfxDataAsync(encodedCertificate, "password", ExportOption.NotExportable, KeyProtectionLevel.NoConsent, InstallOptions.None, "certificateOne");
Load:
CertificateQuery certQuery = new CertificateQuery();
certQuery.FriendlyName = "certificateOne";
IReadOnlyList<Certificate> certificates = await CertificateStores.FindAllAsync(certQuery);
Upvotes: 1
Related Questions
- UWP - SignTool Error: No certificates were found that met all the given criteria
- 401002 CA certificate not found - SDK - Microsoft.Azure.Devices.Provisioning.Client
- Uwp Certificate build pipeline import error
- Azure IoT Edge: Edge Agent can't add X509 certificate to the store
- Azure IoT Hub Certificate
- Using X.509 certificates with the Azure IoT SDK for C
- Iot Edge on Windows 10 Iot Core on RaspBerry Pi 3B
- How to Sign a UWP app on Azure Pipelines?
- Can't connect to IoT Central using X509 certificates
- UWP on windows 10 IoT