Connect to Amazon IoT Core - Amazon IoT Core
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Connect to Amazon IoT Core

Amazon IoT Core supports connections with IoT devices, wireless gateways, services, and apps. Devices connect to Amazon IoT Core so they can send data to and receive data from Amazon IoT services and other devices. Apps and other services also connect to Amazon IoT Core to control and manage the IoT devices and process the data from your IoT solution. This section describes how to choose the best way to connect and communicate with Amazon IoT Core for each aspect of your IoT solution.

Image showing how Amazon IoT Core provides device endpoints to connect IoT devices to Amazon IoT and service endpoints to connect apps and other services to Amazon IoT Core.

There are several ways to interact with Amazon IoT. Apps and services can use the Amazon IoT Core - control plane endpoints and devices can connect to Amazon IoT Core by using the Amazon IoT device endpoints or Amazon IoT Core for LoRaWAN Regions and endpoints.

Amazon IoT Core - control plane endpoints

The Amazon IoT Core - control plane endpoints provide access to functions that control and manage your Amazon IoT solution.

  • Endpoints

    The Amazon IoT Core - control plane and Amazon IoT Core Device Advisor control plane endpoints are Region specific and are listed in Amazon IoT Core Endpoints and Quotas. The formats of the endpoints are as follows.

    Endpoint purpose

    Endpoint format

    Serves

    Amazon IoT Core - control plane

    Amazon IoT Control Plane endpoints

    Amazon IoT Control Plane API

    Amazon IoT Core Device Advisor - control plane

    api.iotdeviceadvisor.aws-region.amazonaws.com

    Amazon IoT Core Device Advisor Control Plane API
    • IPv4 endpoints — IPv4 endpoints support only IPv4 traffic, and are available for all Regions.

      IPv4 endpoints use the following naming convention:

      iot.aws-region.amazonaws.com

      For example the IPv4 endpoint name for the us-east-1 Region is iot.us-east-1.amazonaws.com.

    • Dual-stack (IPv4 and IPv6) endpoints — Dual-stack endpoints support both IPv4 and IPv6 traffic. When a request is made to a dual-stack endpoint, the endpoint URL resolves to an IPv6 or an IPv4 address, depending on the protocol used by the network and client.

      Dual-stack endpoints use the following naming convention:

      iot.aws-region.api.aws

      For example the dual-stack endpoint name for the us-east-1 Region is iot.us-east-1.api.aws.

  • SDKs and tools

    The Amazon SDKs provide language-specific support for the Amazon IoT Core APIs, and the APIs of other Amazon services. The Amazon Mobile SDKs provide app developers with platform-specific support for the Amazon IoT Core API, and other Amazon services on mobile devices.

    The Amazon CLI provides command-line access to the functions provided by the Amazon IoT service endpoints. Amazon Tools for PowerShell provides tools to manage Amazon services and resources in the PowerShell scripting environment.

  • Authentication

    The service endpoints use IAM users and Amazon credentials to authenticate users.

  • Learn more

    For more information and links to SDK references, see Connect to Amazon IoT Core service endpoints.

Amazon IoT device endpoints

The Amazon IoT device endpoints support communication between your IoT devices and Amazon IoT.

  • Endpoints

    The device endpoints support Amazon IoT Core and Amazon IoT Device Management functions. They are specific to your Amazon Web Services account and you can see what they are by using the describe-endpoint command.

    Endpoint purpose

    Endpoint format

    Serves

    Amazon IoT Core - data plane

    See Amazon IoT device data and service endpoints.

    Amazon IoT Data Plane API

    Amazon IoT Device Management - jobs data

    See Amazon IoT device data and service endpoints.

    Amazon IoT Jobs Data Plane API

    Amazon IoT Device Advisor - data plane

    See Configure your device.

    Not applicable

    Amazon IoT Device Management - Fleet Hub

    Not applicable

    Not applicable

    Amazon IoT Device Management - secure tunneling

    api.tunneling.iot.aws-region.amazonaws.com

    Amazon IoT Secure Tunneling API

    If you are using dual-stack endpoints (IPv4 and IPv6) for data plane operations, use the iot:Data-ATS endpoint type. iot:Jobs can be used for IPv4 only. For more information about these endpoints and the functions that they support, see Amazon IoT device data and service endpoints.

  • SDKs

    The Amazon IoT Device SDKs provide language-specific support for the Message Queueing Telemetry Transport (MQTT) and WebSocket Secure (WSS) protocols, which devices use to communicate with Amazon IoT. Amazon Mobile SDKs also provide support for MQTT device communications, Amazon IoT APIs, and the APIs of other Amazon services on mobile devices.

  • Authentication

    The device endpoints use X.509 certificates or Amazon IAM users with credentials to authenticate users.

  • Learn more

    For more information and links to SDK references, see Amazon IoT Device SDKs.

Amazon IoT Core for LoRaWAN gateways and devices

Amazon IoT Core for LoRaWAN connects wireless gateways and devices to Amazon IoT Core.

  • Endpoints

    Amazon IoT Core for LoRaWAN manages the gateway connections to account and Region-specific Amazon IoT Core endpoints. Gateways can connect to your account's Configuration and Update Server (CUPS) endpoint that Amazon IoT Core for LoRaWAN provides.

    Endpoint purpose

    Endpoint format

    Serves

    Configuration and Update Server (CUPS)

    account-specific-prefix.cups.lorawan.aws-region.amazonaws.com:443

    Gateway communication with the Configuration and Update Server provided by Amazon IoT Core for LoRaWAN

    LoRaWAN Network Server (LNS)

    account-specific-prefix.gateway.lorawan.aws-region.amazonaws.com:443

    Gateway communication with the LoRaWAN Network Server provided by Amazon IoT Core for LoRaWAN

  • SDKs

    The Amazon IoT Wireless API that Amazon IoT Core for LoRaWAN is built on is supported by the Amazon SDK. For more information, see Amazon SDKs and Toolkits.

  • Authentication

    Amazon IoT Core for LoRaWAN device communications use X.509 certificates to secure communications with Amazon IoT.

  • Learn more

    For more information about configuring and connecting wireless devices, see Amazon IoT Core for LoRaWAN Regions and endpoints.