Multi Account Registration of AWS IoT Device certificates

Question

I have followed the links : https://aws.amazon.com/about-aws/whats-new/2020/04/simplify-iot-device-registration-and-easily-move-devices-between-aws-accounts-with-aws-iot-core-multi-account-registration/

https://docs.aws.amazon.com/iot/latest/developerguide/x509-client-certs.html#multiple-account-cert and I have registered a device or client certificate (signed by a different CA) with out registering CA. When I tried connecting and publishing data to AWS IoT core with this device certificate ,it showing success on device side but the data is not reflecting at AWS IOT core. I have set proper a)policy b)endpoint

Answer 1

You have not mentioned whether the certificates you are using are recognized by AWS i.e. are they one click certificates generated from aws or they are signed by a different CA which AWS does not recognise.

In short: You might need to register your certificate authority (CA) with AWS IoT if you are using client certificates signed by a CA that AWS IoT doesn't recognize.

If you want clients to automatically register their client certificates with AWS IoT when they first connect, the CA that signed the client certificates must be registered with AWS IoT. Otherwise, you don't need to register the CA certificate that signed the client certificates.

Reference:https://docs.aws.amazon.com/iot/latest/developerguide/register-CA-cert.html