Certificate Management

Overview

BB automatically handles TLS certificate creation and management to ensure secure HTTPS communication between components. This includes:

• Automatic certificate generation during initialization
• Integration with your system's trust store
• Certificate renewal management
• Browser security compatibility

How It Works

When you initialize BB or enable TLS security, the system:

1. Creates a local Certificate Authority (CA)
2. Generates a server certificate signed by the CA
3. Adds the CA to your system's trust store (requires your computer's login password)
4. Configures BB to use the new certificates for secure communication

Certificate Types

Browser Security

Modern browsers require valid HTTPS certificates for secure connections. BB's automatic certificate management ensures:

• No browser security warnings
• Secure WebSocket connections
• Protected API communication
• Data encryption in transit

Certificate Management

Use the bb secure command to manage certificates:

# Enable TLS (recommended)
bb secure on

# Check certificate status
bb secure status

# Disable TLS (not recommended)
bb secure off

Certificate Renewal

BB automatically handles certificate renewal:

• Monitors certificate expiration dates
• Renews server certificates before expiry
• Maintains continuous secure operation
• No manual intervention required

Related Documentation

• Trust Store Management Guide
• Security Troubleshooting Guide
• CLI Documentation