Showing results for 
Search instead for 
Did you mean: 

How to configure vSPOT to use TLS 1.2 to support APs on 5.2.2 and 6.1.1

RUCKUS Team Member

Issue : APs on 6.1.1 and 5.2.2 are not able to connect to vSPOT LBS server. 

Post troubleshooting it was understood that APs on 6.1.1 use TLS 1.2 by default and vSPOT by default will be on TLS 1.0. So we need to change the TLS config on vSPOT to authenticate APs.

Below are the instructions on how to configure TLS 1.2 on vSPOT

## Login to LBS shell

## Enter LBS docker container

admin@vspotappliance:~$ docker exec -it vspot372 /bin/bash

## Change mosquitto tls version

root@vspot:/# vim /etc/mosquitto/conf.d/venue_server.conf
max_connections -1
port 1883
listener 8883
tls_version tlsv1.2 #<< Change to 1.2
psk_hint ap_zd_ls
psk_file /storage/mosquitto/venue_server.psk


## Restart mosquitto service

root@vspot:/# service mosquitto restart
Restarting mosquitto (via systemctl): [ OK ]