Azure Event Grid integration

Gambit_Support · July 17, 2023, 1:09pm

We are trying the MQTT integration to Azure Event Grid

but it seems it only allows to configure either of Certificate or “Username and Password” authentication.
Is there a way to configure both?

Dylan_Schuster · July 17, 2023, 2:50pm

We disallow it in the user interface but do allow the setting of username and password and certificate fields in the same request through our API.

I’m currently setting up an Event Grid in Azure and trying to connect a Losant MQTT integration as a client, as I do not see anything in the documentation that indicates a username and password are necessary to provide along with a certificate. I will get back to you once I learn more.

Dylan_Schuster · July 17, 2023, 7:01pm

It took some work but I got to the bottom of this.

First, I’ve filed a ticket to also expose the username and password fields when selecting “Certificate” as an authentication method in the MQTT integration; as you have pointed out here, that username field is necessary for one of the two methods of authenticating an Event Grid client connection from a Losant integration.

In the meantime, there are two workarounds:

First, you can use the Losant API directly to create or update an integration and, in the request body, include the username property in the mqttConfig object alongside your privateKey and certificate properties. The username should match one of the Client Names in your Event Grid configuration.

Alternatively, you can configure your Event Grid to use an “alternative client configuration name source”; doing so would require you to include the Client Name in the certificate you generate for your client connection in the designated property.

For example, given a Client Name of “eventGridDevice001” and selecting “Certificate DNS” as an alternative source field, using openssl you could generate a certificate for authenticating against Event Grid with the following command (replacing with your respective values):

openssl req -nodes -x509 -sha256 -newkey rsa:4096 \
  -keyout example.org.key \
  -out example.org.crt \
  -days 365 \
  -subj "/C=US/ST=Ohio/L=Cincinnati/O=Losant/CN=example.org"  \
  -addext "subjectAltName = DNS:eventGridDevice001"

Gambit_Support · July 21, 2023, 4:51pm

We figured out the API workflow node and implemented this.
2-minute video at

Topic		Replies	Views
MQTT Integration. Dynamic Updates for Client ID and Password Help mqtt , workflow	4	994	November 21, 2019
[Solved] Connecting from an IoT Gateway Help gateway	2	780	January 31, 2019
MQTT clientid question Help mqtt	6	601	April 18, 2022
Losant broker over MQTTs Help mqtt	10	826	April 2, 2021
Managing Multiple MQTT Connections from Single Device Help mqtt	6	2093	August 29, 2020

Azure Event Grid integration

Related topics