Client authentication - Amazon IoT Core
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Client authentication

Amazon IoT supports three types of identity principals for device or client authentication:

These identities can be used with devices, mobile, web, or desktop applications. They can even be used by a user typing Amazon IoT command line interface (CLI) commands. Typically, Amazon IoT devices use X.509 certificates, while mobile applications use Amazon Cognito identities. Web and desktop applications use IAM or federated identities. Amazon CLI commands use IAM. For more information about IAM identities, see Identity and access management for Amazon IoT.