You can test drive some of the features of IoT_PKI using the Zibawa demo server.
If you have a chrome brower, you can download, verify and renew a client certificate from our test server as follows:
Note: firefox does not allow you to install certificates from self signed certificate authority.
You will see the message: “Zibawa PKI has been unable to verify your client certificate:NONE”
Fill in the certificate request form, as a minimum you need:
(Normally this would be done by the administrator)
Normally you would have to wait for an administrator to approve your request, but we have configured the test server to do this automatically.
You will be emailed a link to enable you to download a certificate.
Install the certificate in your browser.
Settings>Advanced>Privacy and Security>Your certificates
Browse to the certificate you downloaded and install. It will probably be under org-unknown or whatever you introduced as organization data when requesting the cert.
Go again to the test page:
Now you will see that the application can verify your request and responds something like:
SUCCESS: Zibawa PKI succesfully verified your certificate. Serial number:0F7B980CDF9139C28CEA932E6E0EDE5034F28705
Download the python test client. iot_pki_test_client.py
Run the test client from the command line using the command
You should see in the window how your pc connects to the zibawa test server, requests a certificate, then downloads a certificate using the token provided, and finally carries out a test renewal.
The downloaded certificate will be created in the working directory from which you ran the script, name tempCert.pem
If you want to visualize the certificate, you can copy paste the file contents into the certificate decoder below.
(after pasting in the contents , press enter to make the decoder run)