Overview
This topic explains the configurable properties for Cisco IoT FND and TPS, detailing example values and descriptions to help optimize, secure, and manage gateway and telemetry data.
The Cisco Gateway Management System (CGMS) and TPSPROXY properties in Cisco IoT FND and TPS are used to customize, optimize, and secure the management and transmission of gateway and telemetry data, ensuring effective network operation and performance. This section aims to provide all the CGMS properties, with example values and descriptions.
CGMS properties
| Property name |
Example value |
Description |
|---|---|---|
| cgms-keystore-password-hidden= |
< encrypted > |
Encrypted password for the cgms keystore. Encrypt or decrypt with encryption_util.sh. |
| hsm-keystore-name= |
testGroup1 |
HSM partition name. |
| hsm-keystore-password= |
< encrypted > |
Encrypted HSM partition password. |
| security-module= |
ssm/hsm |
Type of security module being used. |
| ssm-host= |
<ipv4 address > |
IP Address of SSM server. |
| ssm-port= |
8445 |
Port of SSM server. |
| ssm-keystore-alias= |
ssm_csmp |
Alias name for SSM certificate in keystore. |
| ssm-keystore-password= |
< encrypted > |
Encrypted password for the SSM keystore. |
| ssm-key-password= |
< encrypted > |
Encrypted key for the SSM key. |
| multicast-interface-address= |
< ipv6 address > |
Cisco IoT FND IPv6 source address for multicast traffic. |
| dhcpV4ClientListenAddresses= |
<ipv4 address > |
IPv4 address on your Cisco IoT FND server used to exchange DHCPv4 messages. |
| dhcpV6ClientListenAddresses= |
< ipv6 address > |
IPv6 address on your Cisco IoT FND server used to exchange DHCPv6 messages. |
| OptimizeTunnelProv= |
true/false |
Indicates whether or not to lock the HER during tunnel provisioning. |
| allowed-outage-skew= |
5000 |
Allow outage skew in seconds, for outage or restoration events. |
| rf.validate-firmware-tlvs= |
true/false |
Skips CG-Mesh device firmware validation. |
| googleMapsClientId= |
< Client ID > |
Google maps client ID. |
| googleMapsApiKey= |
< API key > |
Google maps API key. |
| enable-bootstrap-service= |
true/false |
Used to enable PNP bootstrapping service. |
| scep-url= |
http(s) :// < url of SCEP server > |
URL of SCEP server. |
| ca-fingerprint= |
< fingerprint of CA certificate > |
Fingerprint of CA certificate. |
| proxy-bootstrap-ip= |
<ipv4/v6 address or FQDN > |
PNP server identity sent by Cisco IoT FND to the PNP agent. |
| bootstrap-fnd-alias= |
subca |
Alias name assigned to the CA certificate from the issuer in the Cisco IoT FND keystore. |
| pnp-server-port= |
9125 |
PNP server port, default is 9125. |
| pnp-install-trustpool= |
true/false |
Send the CA bundle file which includes well known public CA certificates. |
| reload-during-bootstrap= |
true/false |
Indicates whether or not to reload a device after PNP boostrapping. |
| router-file-upload-retries |
0 |
Number of retries for router file upload job |
| router-firmware-upload-retries |
0 |
Number of retries for the firmware upload job. |
| router-firmware-install-retries |
0 |
Number of retries for the firmware install job. |
| collect-cellular-link-metrics |
true/false |
Indicates whether or not to collect cellular metrics. |
| collect-cellular-link-metrics-interval |
30 |
Interval for cellular metrics. |
| router-firmware-upload-timeout-minutes= |
30 |
Firmware upload job timeout duration in minutes. |
| router-firmware-install-timeout-minutes= |
60 |
Firmware install job timeout duration in minutes. |
| cgr-ha-fetch-mesh-key-attempts |
3 |
Number of attempts to fetch the mesh keys. |
| cgr-ha-fetch-mesh-key-delay-mins |
1 |
Number of minutes or interval between mesh-key-attempts. |