You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/iot/iot-overview-device-connectivity.md
+26-11Lines changed: 26 additions & 11 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -35,14 +35,19 @@ The following diagram shows a high-level view of the components in a typical IoT
35
35
36
36
---
37
37
38
-
## Primitives
38
+
## Communication methods
39
39
40
40
# [Edge-based solution](#tab/edge)
41
41
42
+
Assets use the following industry standards to exchange data with Azure services:
43
+
44
+
-**OPC UA tags and events**. OPC UA *tags* represent data points. OPC UA *events* represent state changes. The connector for OPC UA is an Azure IoT Operations service that connects to OPC UA servers to retrieve their data and publishes it to topics in the MQTT broker.
45
+
46
+
-**MQTT messaging**. MQTT allows a single broker to serve tens of thousands of clients simultaneously, with lightweight publish-subscribe topic creation and management. Many IoT devices support MQTT natively out of the box. The MQTT broker underpins the messaging layer in Azure IoT Operations and supports both MQTT v3.1.1 and MQTT v5.
42
47
43
48
# [Cloud-based solution](#tab/cloud)
44
49
45
-
Azure IoT devices use the following primitives to exchange data with cloud services. Devices use:
50
+
Azure IoT devices use the following primitives to exchange data with cloud services:
46
51
47
52
-*Device-to-cloud* messages to send time series telemetry to the cloud. For example, temperature data collected from a sensor attached to the device.
48
53
-*Device twins* to share and synchronize state data with the cloud. For example, a device can use the device twin to report the current state of a valve it controls to the cloud and to receive a desired target temperature from the cloud.
@@ -55,10 +60,19 @@ To learn more, see [Device-to-cloud communications guidance](../iot-hub/iot-hub-
55
60
56
61
---
57
62
58
-
## Device-facing cloud endpoints
63
+
## Device-facing endpoints
59
64
60
65
# [Edge-based solution](#tab/edge)
61
66
67
+
Azure IoT Operations uses *connectors* to discover, manage, and ingress data from assets in an edge-based solution.
68
+
69
+
- The connector for OPC UA is a data ingress and protocol translation service that enables Azure IoT Operations to ingress data from your assets. The broker receives telemetry and events from your assets and publishes the data to topics in the MQTT broker. The broker is based on the widely used OPC UA standard.
70
+
- The media connector (preview) is a service that makes media from media sources such as edge-attached cameras available to other Azure IoT Operations components.
71
+
- The connector for ONVIF (preview) is a service that discovers and registers ONVIF assets such as cameras. The connector enables you to manage and control ONVIF assets such as cameras connected to your cluster.
72
+
73
+
When you add a connector to an Azure IoT Operations scenario, you also define an *asset endpoint* that describes the southbound edge connectivity information for one or more assets. An asset endpoint profile includes connection information like the local IP address and authentication information.
74
+
75
+
To learn more, see [What is asset management in Azure IoT Operations](../iot-operations/discover-manage-assets/overview-manage-assets.md).
62
76
63
77
# [Cloud-based solution](#tab/cloud)
64
78
@@ -81,21 +95,22 @@ To learn more about implementing automatic reconnections to endpoints, see [Mana
81
95
82
96
---
83
97
84
-
## Device connection strings
85
-
86
-
A device connection string provides a device with the information it needs to connect securely to an IoT hub. The connection string includes the following information:
87
-
88
-
- The hostname of the IoT hub.
89
-
- The device ID registered with the IoT hub.
90
-
- The security information the device needs to establish a secure connection to the IoT hub.
91
-
92
98
## Authentication
93
99
94
100
# [Edge-based solution](#tab/edge)
95
101
102
+
Assets and asset endpoints in Azure IoT Operations are represented as custom resources in the Kubernetes cluster and as resources in Azure. You can use Azure role-based access control (Azure RBAC) to secure access to these resources. To learn more, see [Secure access to assets and asset endpoints](../iot-operations/discover-manage-assets/howto-secure-assets.md).
103
+
104
+
Asset endpoint profiles include user authentication information for accessing those endpoints. This authentication can be anonymous or username/password authentication where the values are stored as secrets in Azure Key Vault.
96
105
97
106
# [Cloud-based solution](#tab/cloud)
98
107
108
+
A device connection string provides a device with the information it needs to connect securely to an IoT hub. The connection string includes the following information:
109
+
110
+
- The hostname of the IoT hub.
111
+
- The device ID registered with the IoT hub.
112
+
- The security information the device needs to establish a secure connection to the IoT hub.
113
+
99
114
Azure IoT devices use TLS to verify the authenticity of the IoT hub or DPS endpoint they're connecting to. The device SDKs rely on the device's trusted certificate store to include the DigiCert Global Root G2 TLS certificate they currently need to establish a secure connection to the IoT hub. To learn more, see [Transport Layer Security (TLS) support in IoT Hub](../iot-hub/iot-hub-tls-support.md) and [TLS support in Azure IoT Hub Device Provisioning Service (DPS)](../iot-dps/tls-support.md).
100
115
101
116
Azure IoT devices can use either shared access signature (SAS) tokens or X.509 certificates to authenticate themselves to an IoT hub. X.509 certificates are recommended in a production environment. To learn more about device authentication, see:
0 commit comments