tr069

TR069 Certificate

# 1 Generate CA private key
test -f assets/ca.key || openssl genrsa -out assets/ca.key 4096
# 2 Generate CA certificate
test -f assets/ca.crt || openssl req -x509 -new -nodes -key assets/ca.key -days 3650 -out assets/ca.crt -subj \
"/C=CN/ST=Shanghai/O=toughradius/CN=ToughradiusCA/emailAddress=master@toughstruct.net"
# 3 Generate server private key
openssl genrsa -out assets/server.key 2048
# 4 Generate a certificate request file
openssl req -new -key assets/server.key -out assets/server.csr -subj \
"/C=CN/ST=Shanghai/O=toughradius/CN=*.toughstruct.net/emailAddress=master@toughstruct.net"
# 5 Generate a server certificate based on the CA's private key and the above certificate request file
openssl x509 -req -in assets/server.csr -CA assets/ca.crt -CAkey assets/ca.key -CAcreateserial -out assets/server.crt -days 7300
mv assets/server.key assets/cwmp.tls.key
mv assets/server.crt assets/cwmp.tls.crt

It should be noted that the certificate prefix cwmp.tls is fixed, toughradius program will default to /var/toughradius/private/ directory, if there is no certificate file, it will create a default certificate file, default certificate file, CN=*.toughradius.net, May not work in your environment

TR069 Preset template

The description format of presets is the standard YAML format, which can facilitate the use of various data structures. For example, online automatic initialization of new devices can be done using a set of presets

oid Can be set in scripts, factory settings, firmware configuration
enabled Indicates whether to enable this task
delay For download tasks, the CPE can be delayed
onfail If it is defined as cancel, when the task fails, all unexecuted tasks defined by the description file will be canceled; when defined as ignore, unexecuted tasks will continue to be executed

The order of execution is FactoryresetConfig -> FirmwareConfig -> Downloads ->Uploads -> SetParameterValues -> GetParameterNames,

In a set of preset tasks, only some operations can be set, if the preset is executed by the system scheduled task,factoryreset, firmwareconfig will be ignored

If the preset is performed by a scheduled system task (the time policy is set to sys_scheduled), then factoryreset, firmwareconfig are ignored in the set of preset tasks.

# TR069 The default description format is the standard YAML format, which can facilitate the use of various data structures. For example, a set of presets can be used to complete the automatic initialization of new devices online

#	- oid  Can be set in scripts, factory settings, firmware configuration
#	- enabled Indicates whether to enable this task
#	- delay  For download tasks, the CPE can be delayed
#	- onfail  If it is defined as cancel, when the task fails, all unexecuted tasks defined by the description file will be canceled; when defined as ignore, unexecuted tasks will continue to be executed

# The order of execution is  FactoryresetConfig -> FirmwareConfig -> Downloads ->Uploads -> SetParameterValues -> GetParameterNames,

# If the preset is performed by a scheduled system task (the time policy is set to `sys_scheduled`), then factoryreset, firmwareconfig are ignored in the set of preset tasks.

# Factory settings script description, single definition
FactoryResetConfig:
  oid: "test_factory_reset_cfg"
  enabled: false
  delay: 0
  onfail: "ignore"

# Firmware configuration description
FirmwareConfig:
  oid: "test_firmware_cfg"
  enabled: false
  delay: 0
  onfail: "ignore"

# Regular download script, supports multiple sequential execution
Downloads:
  - oid: "test_download"
    enabled: true
    delay: 0
    onfail: "ignore"
  - oid: "test_download2"
    enabled: true
    delay: 0
    onfail: "ignore"

# Regular upload tasks that support multiple sequential executions
Uploads:
  - filetype: "2 VendorLog File"
    enabled: false
    onfail: "ignore"

# Set parameters, send multiple sets of parameters at one time
SetParameterValues:
  - name: "Device.DeviceInfo.X_MIKROTIK_SystemIdentity"
    type: "string"
    value: "TestRos"

# Get parameters, support multiple sequential execution
GetParameterValues:
  - "Device.DeviceInfo."

PreviousfreeRADIUS integration Nexttr069_events

Last updated 1 year ago

Was this helpful?

# 1 Generate CA private key test -f assets/ca.key || openssl genrsa -out assets/ca.key 4096 # 2 Generate CA certificate test -f assets/ca.crt || openssl req -x509 -new -nodes -key assets/ca.key -days 3650 -out assets/ca.crt -subj \ "/C=CN/ST=Shanghai/O=toughradius/CN=ToughradiusCA/emailAddress=master@toughstruct.net" # 3 Generate server private key openssl genrsa -out assets/server.key 2048 # 4 Generate a certificate request file openssl req -new -key assets/server.key -out assets/server.csr -subj \ "/C=CN/ST=Shanghai/O=toughradius/CN=*.toughstruct.net/emailAddress=master@toughstruct.net" # 5 Generate a server certificate based on the CA's private key and the above certificate request file openssl x509 -req -in assets/server.csr -CA assets/ca.crt -CAkey assets/ca.key -CAcreateserial -out assets/server.crt -days 7300 mv assets/server.key assets/cwmp.tls.key mv assets/server.crt assets/cwmp.tls.crt

# TR069 The default description format is the standard YAML format, which can facilitate the use of various data structures. For example, a set of presets can be used to complete the automatic initialization of new devices online # - oid Can be set in scripts, factory settings, firmware configuration # - enabled Indicates whether to enable this task # - delay For download tasks, the CPE can be delayed # - onfail If it is defined as cancel, when the task fails, all unexecuted tasks defined by the description file will be canceled; when defined as ignore, unexecuted tasks will continue to be executed # The order of execution is FactoryresetConfig -> FirmwareConfig -> Downloads ->Uploads -> SetParameterValues -> GetParameterNames, # If the preset is performed by a scheduled system task (the time policy is set to `sys_scheduled`), then factoryreset, firmwareconfig are ignored in the set of preset tasks. # Factory settings script description, single definition FactoryResetConfig: oid: "test_factory_reset_cfg" enabled: false delay: 0 onfail: "ignore" # Firmware configuration description FirmwareConfig: oid: "test_firmware_cfg" enabled: false delay: 0 onfail: "ignore" # Regular download script, supports multiple sequential execution Downloads: - oid: "test_download" enabled: true delay: 0 onfail: "ignore" - oid: "test_download2" enabled: true delay: 0 onfail: "ignore" # Regular upload tasks that support multiple sequential executions Uploads: - filetype: "2 VendorLog File" enabled: false onfail: "ignore" # Set parameters, send multiple sets of parameters at one time SetParameterValues: - name: "Device.DeviceInfo.X_MIKROTIK_SystemIdentity" type: "string" value: "TestRos" # Get parameters, support multiple sequential execution GetParameterValues: - "Device.DeviceInfo."