By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

IoT Policy rules for publishing directly to rules (basic ingestion)

0

The AWS IoT Core action resources documentation explains how you can formulate policy statements for resource-limiting iot:Publish.

I am wondering: can you use this control access to be able to publish to basic ingestion rules. What I'm looking to do is to allow certain clients to ONLY publish to rules via basic ingestion, perhaps specific rules. Is something like this this okay:

resources: ["arn:aws:iot:*:*:topic/$aws/rules/*"]

Topics
Internet of Things (IoT)
Tags
AWS IoT Core
Language
English
profile picture
wz2b
asked 9 months ago254 views
1 Answer
2
Accepted Answer

Hello,

Yes, you can use "resources: ["arn:aws:iot:::topic/$aws/rules/*"]"

According to the below documentation, we can observe below:

Before you use Basic Ingest, verify that your device or application is using a policy that has publish permissions on $aws/rules/. Alternatively, you can specify permission for individual rules with $aws/rules/rule_name/ in the policy.

[+]. https://docs.aws.amazon.com/iot/latest/developerguide/iot-basic-ingest.html#iot-basic-ingest-use

AWS
rePost-User-7792115
answered 8 months ago
profile pictureAWS
EXPERT
Greg_B
reviewed 8 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content