Enabling Accessory Control
To enable accessory control Homebridge must be running in insecure mode.
Insecure mode, as it's name suggests, is not secure. Anyone with network access to your Homebridge server port and pin will be able to control your accessories. Unless exposing the Homebridge port to the internet, this will generally not be a problem as access will be limited to people already on your local network. Remote access via a home hub (Apple TV, iPad, HomePod etc.) will still be secure. Enable at your own risk.
Add the -I flag:
homebridge -I
If you have configured Homebridge to start using systemd by following the guide on the offical wiki then you can enable insecure mode by adding -I to the HOMEBRIDGE_OPTS variable in your /etc/default/homebridge file.
Example:
# Defaults / Configuration options for homebridge
# The following settings tells homebridge where to find the config.json file and where to persist the data (i.e. pairing and others)
HOMEBRIDGE_OPTS=-U /var/lib/homebridge -I
# If you uncomment the following line, homebridge will log more
# You can display this via systemd's journalctl: journalctl -f -u homebridge
# DEBUG=*
If running this plugin in the oznu/homebridge Docker image you can enable insecure mode from the user interface provided by this plugin.
Click the Docker logo on the menu bar -> Settings.
Configurations that use other process supervisors such as init.d, pm2 or screen can also enable insecure mode just by adding -I to the startup command.