Rapid Network Provisioning and App-Based Device Control

1. Embed Device Metadata into Firmware

Utilize the Device SDK to configure the necessary parameters within your device firmware. This establishes the initial link between the hardware and your cloud environment.

TIP

Configure the IAM endpoint, MQTT endpoint, SNTP server etc. in the SDK

TIP

The ESP32 SDK is currently supported. If you are utilizing alternative chipsets, please refer to the integration flow detailed in the General Development Guidelines.

Security Best Practice

Ensure that the device private key is never exposed to external environments or insecure repositories. It must remain stored within the device's Secure Element or protected flash partition.

2. Establish Identity Infrastructure and Build with the App SDK

To manage user-device relationships and secure access, you must also establish a robust identity system for the app user.

• Create an Identity Application:
  Initialize an Identity App via the Management Console. This acts as the centralized authentication system for your end-users.

TIP

We recommend creating the Identity Application within SiX IDaaS & IAM. If you choose to utilize a proprietary identity system, ensure it is fully compliant with OIDC/OAuth2 protocols to maintain compatibility with the SDK.

• Configure the App SDK:
  Integrate the identity application credentials and product-specific parameters into the App SDK. The SDK provides a comprehensive framework that includes:

  • Network Provisioning: Tools to securely onboard devices to local Wi-Fi networks.

  • Product Control Panels: A framework for developing custom UI panels for specific hardware features.

  • Identity Binding: Logic for securely linking devices to specific user accounts within your identity system.