Certificate update
Leapscom supports update of the X.509 certificates and the private key over USB, BLE or serial port interface. Refer to leaps_cert_update_start for more details on the update over TLV API. Only devices with Ethernet or Wi-Fi interface make use of the certificates when TLS is enabled.
You can update one or multiple devices simultaneously and you can update only certain certificate if needed.
Certificate updates can only be performed using interfaces that support the TLV API. Leapscom does not support running certificate updates together with custom command execution or firmware update simultaneously. Therefore, the options –ca, –cert and –key cannot be used together with –fw, –eldr, –cfg, –tlv, or –shell.
Options
- --ca DER_FILE
Path to the CA certificate file in DER (.der) format.
- --cert DER_FILE
Path to the client certificate file in DER (.der) format.
- --key DER_FILE
Path to the client private key file in DER (.der) format.
Usage
See section Discovering devices on how to list all available devices for update on the given interface. Execute following command to update update CA-certificate, Client certificate and Private key.
Connect USB data cable to the USB port.
$ python3 -m leapscom --usb --ca ca-cert.der --cert client-cert.der.der --key client-priv-key.der
In order to update only certain devices you need to specify serial number.
$ python3 -m leapscom --usb 630D46F2D51482FC 7E1C5859C2ECF343 --ca ca-cert.der --cert client-cert.der.der --key client-priv-key.der
Before update, make sure that BLE is enabled on the devices (see section Discovering devices for more details).
$ python3 -m leapscom --ble --ca ca-cert.der --cert client-cert.der.der --key client-priv-key.der
In order to update only certain devices you need to specify the BLE address.
$ python3 -m leapscom --ble FE:40:B4:BC:D3:42 E0:05:86:49:A9:40 --ca ca-cert.der --cert client-cert.der.der --key client-priv-key.der
$ python3 -m leapscom --dev /dev/ttyACM0 /dev/ttyACM1 /dev/ttyACM2 --ca ca-cert.der --cert client-cert.der.der --key client-priv-key.der