Posted On: Sep 30, 2021
You can now provision devices using Amazon IoT Core Just-in-Time Provisioning and Just-in-Time Registration features without having to send the entire trust chain on devices’ first connection to IoT Core. Until now, customers were required to configure their devices to present both the registered CA certificate and the client certificate signed by the registered CA certificate as part of the TLS handshake on devices’ first connection to IoT Core. Effective today, Amazon IoT core makes it optional for customers to present the CA certificate on devices’ first connection to IoT Core when using Just-in-Time Provisioning and Just-in-Time Registration. This enhancement makes it easy for customers to migrate brownfield devices to Amazon IoT Core, example, from customers’ self-managed cloud solutions.
Amazon IoT Core is a managed cloud service that lets connected devices easily and securely interact with cloud applications and other devices. Before devices can securely connect and communicate with Amazon IoT Core, customers need to provision their devices. Provisioning refers to the process of registering devices’ digital identities with the cloud service, attaching permissions for the devices to access cloud resources, and associating contextual information (like device serial numbers, location) with registered digital identities. With Amazon IoT Core Just-in-Time Provisioning and Just-in-Time Registration features, customers can have their devices provisioned automatically when devices first attempt to connect to Amazon IoT Core.
This feature update is now supported in the Amazon Web Services China (Beijing) Region, operated by Sinnet, and the Amazon Web Services China (Ningxia) Region, operated by NWCD. You can visit the Amazon IoT Core Just-in-Time Provisioning and Just-in-Time Registration documentations to learn more.