Hello,
Facing an issue where after starting sntp server and domain name resolution when aws_iot_mqtt_connect is called it sends error -19 for first 2 attempt and on third attempt it successfully connect to aws_iot_mqtt_connect. What can be the issue?
We know that NETWORK_X509_ROOT_CRT_PARSE_ERROR = -19, means it is CA root file error.
The CA root file that is causing above issue is ECC 256 bit key: Amazon Root CA 3.
Other Root CA file like, RSA 2048 bit key: VeriSign Class 3 Public Primary G5 root CA certificate and RSA 2048 bit key: Amazon Root CA 1 are not at all working and throws -19 error every time continuously.
It takes almost 2 minutes to connect to aws server after entering the wifi ssid and password. Our aim is to reduce this time.
AWS sdk version is 3.1.
Please suggest what xan be the issue.
Thank you,
Akshaay
Can you provide us the sniffer capture during the issue to verify the reason for failure in first 2 attempts?
We recommend using RSA 2048 bit key: Amazon Root CA 1 rootCA for connection to download on the device using certcs server. Also, kinldy let us know if the same behaviour is seen with our QCLI_demo -- Ecosystem -- AWS commands.
Please provide the sequence of instructions, how you are verifying the connection sequence ?
Hi,
We maanged to resolve the issue by using Amazon Root Certificate CA 3. It is not clear to us why, but we're glad it works. The only thing right now is that we need to wait for the system to get time from sntpc, or otherwise it fails on certificate verification - but this makes sense and works well for us.
Thank you,
Rani