Authentication and Authorization

Authentication refers to the process of verifying the identity of a client when connecting to an MQTT broker. Authorization, on the other hand, involves granting the appropriate access levels and permissions to authenticated clients. By employing authentication mechanisms and fine-grained authorization, you can ensure that only authorized clients can connect to your MQTT broker and perform specific operations.

This page contains learning resources for exploring the concepts of authentication and authorization and how to ensure the security of MQTT messaging systems through authentication mechanisms.

Blogs

Username and Password Authentication
Adding Salt to Hashing: A Better Way to Store Passwords
Securing MQTT with Username & Password Authentication
Leveraging Enhanced Authentication for MQTT Security

Website

Introduction to JSON Web Tokens

To learn how authentication and authorization are implemented in EMQX and how to configure the access control functions, refer to Access Control.

Publish/Subscribe

Client SDK

REST API

Design and Implementation

Configure Load Balancer

Performance and Tuning

Configuration

EMQX Dashboard

Topics and subscription

Access Control

Data Integration

Logs and Observability

Plugin and Extension

Access Control

Authentication

Password based

Authorization

Network and TLS

MQTT over QUIC

Multi-Protocol Gateway

Incompatible Changes

Authentication and Authorization

Topics and subscription

Access Control

Data Integration

Authentication

Password based

Authorization

Authentication and Authorization ​

Authentication and Authorization