Posted On: Nov 19, 2021

You can now use Multi-Account Registration certificates on AWS IoT Core Credential Provider endpoints. Multi-Account Registration is a feature of AWS IoT Core that makes it easy for customers to register and use the same device certificate across multiple AWS accounts and endpoints. For example, a customer could register the same certificate with testing and production accounts. Customers can subsequently move devices easily between these AWS accounts by specifying the account endpoint when devices connect to AWS IoT Core. Until now, Multi-Account Registration certificates were supported only on IoT data plane and IoT Jobs endpoints. Starting today, customers can also use Multi-Account Registration certificates on IoT Credential Provider endpoints. See AWS IoT device data and service endpoints for more details. 

AWS IoT Core is a managed cloud service that lets connected devices easily and securely interact with cloud applications and other devices. IoT Devices can use X.509 certificates to connect to AWS IoT Core using TLS mutual authentication protocols. Other AWS services that do not support certificate-based authentication can be called using AWS credentials in AWS Signature Version 4 format. AWS IoT Core Credentials Provider allows you to use the built-in X.509 certificate as the unique device identity to authenticate any AWS request. 

You can visit AWS IoT Core Multi-Account Registration and AWS IoT Core Credential Provider documentations to learn more.