Discuss with expertTry it for free
© 2026 Direct Cursus Technology L.L.C.

Creating a certificate

Written by
Updated at June 15, 2026

Warning

Yandex IoT Core is no longer available to new users.

Current users can create resources until November 1, 2026. Afterwards, the service will go read-only and cease to operate on December 1, 2026. For more information on the timing and procedure, see Service shutdown.

For devices to interact, you need X.509 certificates. If you do not have a certificate, you can create one, e.g., with OpenSSL.

To create a certificate, install OpenSSL and run the following command from the command line:

openssl req -x509 \
  -newkey rsa:4096 \
  -keyout key.pem \
  -out cert.pem \
  -nodes \
  -days 365 \
  -subj '/CN=localhost'

Where:

  • -x509: X.509 certificate.
  • newkey: Encryption algorithm.
  • -keyout: File to write the private key to.
  • -out: File to save the certificate to.
  • -nodes: This flag is set when no public key encryption is required.
  • -days: Certificate validity period in days.
  • -subj: Request object.
Previous
Deleting a broker
Next
Managing registry certificates