By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

How to download intermediate certificates for AWS IoT?

0

Hello,

I generated an MQTT client certificate using create-keys-and-certificate. The issuer of this certificate is: issuer= /OU=Amazon Web Services O=Amazon.com Inc. L=Seattle ST=Washington C=US

is there any way to access that intermediate certificate and any other intermediate ones in the chain? I've checked all the certificates here: https://www.amazontrust.com/repository/ but unfortunately none of them is that one.

thank you!

Topics
Internet of Things (IoT)Security, Identity, & Compliance
Tags
AWS IoT CoreSecurity, Identity, & ComplianceInternet of Things (IoT)AWS Certificate Manager
Language
English
sano90
asked 2 years ago947 views
2 Answers
1

Hi,

you cannot retrieve the CA from IoT Core that is used to sign AWS IoT Core issued device certificates. AWS IoT Core is not a PKI solution.

In case you need a PKI you can use for example AWS Certificate Manager Private Certificate Authority (CA).

You can also register your private CA with AWS IoT Core and issue device certificates.

KR,

Philipp

AWS
EXPERT
Philipp S
answered 2 years ago
0

You can download the RootCA which used to connect to IoT Core: https://docs.aws.amazon.com/iot/latest/developerguide/server-authentication.html#server-authentication-certs

Also you can request a certificate from IoT Core console, and there will be a link to download those Root CAs.

AWS
guanglan
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content