How to download intermediate certificates for AWS IoT?
Hello,
I generated an MQTT client certificate using create-keys-and-certificate. The issuer of this certificate is: issuer= /OU=Amazon Web Services O=Amazon.com Inc. L=Seattle ST=Washington C=US
is there any way to access that intermediate certificate and any other intermediate ones in the chain? I've checked all the certificates here: https://www.amazontrust.com/repository/ but unfortunately none of them is that one.
thank you!
Hi,
you cannot retrieve the CA from IoT Core that is used to sign AWS IoT Core issued device certificates. AWS IoT Core is not a PKI solution.
In case you need a PKI you can use for example AWS Certificate Manager Private Certificate Authority (CA).
You can also register your private CA with AWS IoT Core and issue device certificates.
KR,
Philipp
You can download the RootCA which used to connect to IoT Core: https://docs.aws.amazon.com/iot/latest/developerguide/server-authentication.html#server-authentication-certs
Also you can request a certificate from IoT Core console, and there will be a link to download those Root CAs.
Relevant questions
How to create IoT x509 certificate using CloudFormation?
Accepted Answerasked 3 months agoAWS IoT Fleet Provisioning doesn't publish certificate response
asked 2 years agoThe server is not sending the required intermediate certificate
asked a month agoiOT services, generating certificates
asked 4 months agoI can't download the certificate(AWS IoT)
asked 2 years agoOrigin SSL check fails with the NEW Letsencrypt Issuer
asked 2 years agoHow to download intermediate certificates for AWS IoT?
asked 2 months agoUsing a subordinate certificate authority from ACM Private CA for mTLS client certificate authentication with MSK
asked 5 months agoAWS Client VPN Certs
Accepted Answerasked 3 years agoUsing Private CA In AWS IoT
Accepted Answerasked 2 years ago