Connect to Amazon IoT Core
Amazon IoT Core supports connections with IoT devices, wireless gateways, services, and apps. Devices connect to Amazon IoT Core so they can send data to and receive data from Amazon IoT services and other devices. Apps and other services also connect to Amazon IoT Core to control and manage the IoT devices and process the data from your IoT solution. This section describes how to choose the best way to connect and communicate with Amazon IoT Core for each aspect of your IoT solution.
There are several ways to interact with Amazon IoT. Apps and services can use the Amazon IoT Core - control plane endpoints and devices can connect to Amazon IoT Core by using the Amazon IoT device endpoints or Amazon IoT Core for LoRaWAN Regions and endpoints.
Amazon IoT Core - control plane endpoints
The Amazon IoT Core - control plane endpoints provide access to functions that control and manage your Amazon IoT solution.
-
Endpoints
The Amazon IoT Core - control plane and Amazon IoT Core Device Advisor control plane endpoints are Region specific and are listed in Amazon IoT Core Endpoints and Quotas. The formats of the endpoints are as follows.
Endpoint purpose
Endpoint format
Serves
Amazon IoT Core - control plane
Amazon IoT Control Plane API Amazon IoT Core Device Advisor - control plane
api.iotdeviceadvisor.aws-region.amazonaws.comAmazon IoT Core Device Advisor Control Plane API -
IPv4 endpoints — IPv4 endpoints support only IPv4 traffic, and are available for all Regions.
IPv4 endpoints use the following naming convention:
iot.aws-region.amazonaws.comFor example the IPv4 endpoint name for the us-east-1 Region is
iot.us-east-1.amazonaws.com. -
Dual-stack (IPv4 and IPv6) endpoints — Dual-stack endpoints support both IPv4 and IPv6 traffic. When a request is made to a dual-stack endpoint, the endpoint URL resolves to an IPv6 or an IPv4 address, depending on the protocol used by the network and client.
Dual-stack endpoints use the following naming convention:
iot.aws-region.api.awsFor example the dual-stack endpoint name for the us-east-1 Region is
iot.us-east-1.api.aws.
-
-
SDKs and tools
The Amazon SDKs
provide language-specific support for the Amazon IoT Core APIs, and the APIs of other Amazon services. The Amazon Mobile SDKs provide app developers with platform-specific support for the Amazon IoT Core API, and other Amazon services on mobile devices. The Amazon CLI
provides command-line access to the functions provided by the Amazon IoT service endpoints. Amazon Tools for PowerShell provides tools to manage Amazon services and resources in the PowerShell scripting environment. -
Authentication
The service endpoints use IAM users and Amazon credentials to authenticate users.
-
Learn more
For more information and links to SDK references, see Connect to Amazon IoT Core service endpoints.
Amazon IoT device endpoints
The Amazon IoT device endpoints support communication between your IoT devices and Amazon IoT.
-
Endpoints
The device endpoints support Amazon IoT Core and Amazon IoT Device Management functions. They are specific to your Amazon Web Services account and you can see what they are by using the describe-endpoint
command. Endpoint purpose
Endpoint format
Serves
Amazon IoT Core - data plane
Amazon IoT Device Management - jobs data
Amazon IoT Jobs Data Plane API Amazon IoT Device Advisor - data plane
Not applicable Amazon IoT Device Management - Fleet Hub
Not applicable
Not applicable
Amazon IoT Device Management - secure tunneling
api.tunneling.iot.aws-region.amazonaws.comAmazon IoT Secure Tunneling API If you are using dual-stack endpoints (IPv4 and IPv6) for data plane operations, use the
iot:Data-ATSendpoint type.iot:Jobscan be used for IPv4 only. For more information about these endpoints and the functions that they support, see Amazon IoT device data and service endpoints. -
SDKs
The Amazon IoT Device SDKs provide language-specific support for the Message Queueing Telemetry Transport (MQTT) and WebSocket Secure (WSS) protocols, which devices use to communicate with Amazon IoT. Amazon Mobile SDKs also provide support for MQTT device communications, Amazon IoT APIs, and the APIs of other Amazon services on mobile devices.
-
Authentication
The device endpoints use X.509 certificates or Amazon IAM users with credentials to authenticate users.
-
Learn more
For more information and links to SDK references, see Amazon IoT Device SDKs.
Amazon IoT Core for LoRaWAN gateways and devices
Amazon IoT Core for LoRaWAN connects wireless gateways and devices to Amazon IoT Core.
-
Endpoints
Amazon IoT Core for LoRaWAN manages the gateway connections to account and Region-specific Amazon IoT Core endpoints. Gateways can connect to your account's Configuration and Update Server (CUPS) endpoint that Amazon IoT Core for LoRaWAN provides.
Endpoint purpose
Endpoint format
Serves
Configuration and Update Server (CUPS) account-specific-prefix.cups.lorawan.aws-region.amazonaws.com:443Gateway communication with the Configuration and Update Server provided by Amazon IoT Core for LoRaWAN
LoRaWAN Network Server (LNS) account-specific-prefix.gateway.lorawan.aws-region.amazonaws.com:443Gateway communication with the LoRaWAN Network Server provided by Amazon IoT Core for LoRaWAN
-
SDKs
The Amazon IoT Wireless API that Amazon IoT Core for LoRaWAN is built on is supported by the Amazon SDK. For more information, see Amazon SDKs and Toolkits
. -
Authentication
Amazon IoT Core for LoRaWAN device communications use X.509 certificates to secure communications with Amazon IoT.
-
Learn more
For more information about configuring and connecting wireless devices, see Amazon IoT Core for LoRaWAN Regions and endpoints.