Posted On: Nov 19, 2021
You can now use Multi-Account Registration certificates on Amazon IoT Core Credential Provider endpoints. Multi-Account Registration is a feature of Amazon IoT Core that makes it easy for customers to register and use the same device certificate across multiple Amazon Web Services accounts and endpoints. For example, a customer could register the same certificate with testing and production accounts. Customers can subsequently move devices easily between these Amazon Web Services accounts by specifying the account endpoint when devices connect to Amazon IoT Core. Until now, Multi-Account Registration certificates were supported only on IoT data plane and IoT Jobs endpoints. Starting today, customers can also use Multi-Account Registration certificates on IoT Credential Provider endpoints. See Amazon IoT device data and service endpoints for more details.
Amazon IoT Core is a managed cloud service that lets connected devices easily and securely interact with cloud applications and other devices. IoT Devices can use X.509 certificates to connect to Amazon IoT Core using TLS mutual authentication protocols. Other Amazon Web Services services that do not support certificate-based authentication can be called using Amazon Web Services credentials in Amazon Web Services Signature Version 4 format. Amazon IoT Core Credentials Provider allows you to use the built-in X.509 certificate as the unique device identity to authenticate any Amazon Web Services request.
This feature is now supported in the Amazon Web Services China (Beijing) Region, operated by Sinnet, and the Amazon Web Services China (Ningxia) Region, operated by NWCD. You can visit Amazon IoT Core Multi-Account Registration and Amazon IoT Core Credential Provider documentations to learn more.