AWS::IoT::Certificate

IoT Certificate

Use the AWS::IoT::Certificate resource to declare an AWS IoT X.509 certificate.

Properties

5 configurable properties. 1 required. Click a row to see details.

Filter:

Property	Type	Flags
`Status`	`string`	Required
`CACertificatePem`	`string`	Create-onlyWrite-only
`CertificateMode`	`string`	Create-only
`CertificatePem`	`string`	Create-only
`CertificateSigningRequest`	`string`	Create-onlyWrite-only

Return Values

Values returned after the resource is created. Access these with Fn::GetAtt.

Attribute	Type	Description
`Arn`	`string`	-
`Id`	`string`	-

Sample CloudFormation Template

A minimal template with required properties and common optional ones.

template.yaml

AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::IoT::Certificate

Resources:
  MyResource:
    Type: AWS::IoT::Certificate
    Properties:
      Status: "ACTIVE"

Required IAM Permissions

Permissions CloudFormation needs in your IAM role to manage this resource.

create

iot:CreateCertificateFromCsriot:RegisterCertificateiot:RegisterCertificateWithoutCAiot:DescribeCertificatekms:Decrypt

read

iot:DescribeCertificatekms:Decrypt

update

iot:UpdateCertificateiot:DescribeCertificatekms:Decrypt

delete

iot:DeleteCertificateiot:UpdateCertificateiot:DescribeCertificatekms:Decrypt

list

iot:ListCertificates

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

ServiceIoT

Properties7

Required1

TaggingNot supported

Primary IDId

Supported Operations

CreateReadUpdateDeleteList

Immutable After Creation

These properties cannot be changed after the resource is created. Updating them triggers a replacement.

CertificateSigningRequestCACertificatePemCertificatePemCertificateMode

Related Resources

External Links

AWS Documentation