Skip to main content

Setting up a DigiCert Gateway


  • gateway .jar application, available from your DigiCert account manager.

  • Java runtime environment version 14 or higher.

  • MAC address of the network device the gateway will be hosted on.

  • API token or authentication certificate (private key in PKCS12 format) generated in the DigiCert ONE instance that will use the gateway.

  • If you secure your gateway traffic through HTTPS, a TLS certificate (private key in PKCS12 format) on the host device.

To configure a new DigiCert Gateway:

  1. In the IoT Trust Manager menu, select Integrations > DigiCert Gateways.

  2. Select Create Gateway.

  3. Enter general settings:

    • Gateway nickname

    • Description (optional)

    • Authentication method

      API token or authentication certificate.

  4. Select Next.

  5. Enter network settings:

    • Allowed gateway IP addresses (optional)

      To limit communication with DigiCert ONE, enter IP addresses for allowed gateway hosts.

    • MAC address

      For the network device the gateway will be hosted on.

    • HTTPS port, TLS certificate location, and keystore password.


      HTTP port.

  6. Select Generate gateway configuration file.

  7. In the popup, select Download configuration file.

  8. Save the configuration yaml file to install on your gateway host.

To run the gateway service as a jar file:

  1. On the gateway host device, create a new directory called dcone-gateway.


    Make sure the dcone-gateway directory is protected to restrict unauthorized access.

  2. Copy the gateway.jar file into the dcone-gateway directory.

  3. In the dcone-gateway directory, create a new directory called config.

  4. Copy your configuration yaml file into the config directory.

  5. Run the application:

    java -jar dcone-gateway.jar --spring.config.location=config/application.yml

    To redirect logging to a different directory:

    java -jar dcone-gateway.jar --spring.config.location=config/application.yml > [path-to-directory]/gateway.log 2>&1

To run the gateway as a docker image:

  1. Navigate to the directory where you want run the gateway.

  2. Copy your configuration yaml file into the directory.

  3. Run the application:

    docker run -it -v "$(pwd)":/config -e JAVA_OPTS="-Dspring.config.location=/config/application.yml" -p 8080:8080 -p 8443:8443 dcone-gateway


    Insert correct ports as generated in your configuration yaml file.

To enable SSL support:

openssl pkcs12 -export -inkey [private_key] -in [certificate] -name [alias] -out [name_of_pkcs12]

or for the certificate chain:

openssl pkcs12 -export -inkey [private_key] -in [certificate] -certfile [chain_file] -out [name_of_pkcs12]