Starting with FLOW 2.3, the Certificates module provides centralized management of certificates used by communication interfaces.
Certificates can be uploaded, validated, and stored directly on the device before being assigned to supported interfaces such as MQTT and Webhooks.
Figure: Certificates.
Certificates managed in this section are independent from the SSL Webserver Certificate for REST API used by the device's web interface and REST API.
Add Certificate
Certificates can be added by clicking Add new certificate, with the following fields available:
Type – Available options are:
Certificate + key – Uploads a certificate together with its corresponding private key.
CA certificate – Uploads a trusted Certificate Authority (CA) certificate used to validate remote servers or clients.
Name – User-defined certificate name.
Description – Optional description.
Certificate file – Public certificate file.
Private key file – Corresponding private key (only for Certificate + key type).
Important
Only PEM-formatted certificates are supported.
Private keys must be unencrypted (password-protected keys are not supported).
Uploaded certificates are automatically validated before being stored.
Figure: Add new certificate dialog.
Added certificates appear in the configuration of supported interfaces.
Figure: Example of certificate usage in MQTT interface settings.