Connecting multiple ESP32 device to iot core.

1

Hi,

I am working on a home automation project where I will be using 5-6 ESP32 (later more) to connect to iot core and subscribe/publish data. however creating new thing for every ESP32 is complicated as each ESP require unique certificate and policy and when number of esp32 increase creating manually for each and uploading seperate codes in each esp is unrealistic.

Please help me out with a proper option where each time we get a new thing and policy created everytime I add a new device.

asked a year ago685 views
2 Answers
1

It is best practice to have unique credentials for each device, meaning that you SHOULD use unique certificates for each ESP32. These certificates can be embedded in software or in HW security modules (such as ATECC608). These modules can also be purchased with preconfigured credentials that can be pre-registered in AWS IoT Core (see https://www.microchip.com/en-us/products/security/trust-platform). You can then leverage a JITP flow to activate the device and create the cloud resources (such as Thing, ThingGroups, Policies) automatically.

An alternative solution is to use a certificate vending machine that sends the device the unique certificate at onboarding time. One such solution which is tailored for embedded devices is IoT Provisioning Secrets Free. You can find additional solutions in the whitepaper listed below.

You can leverage AWS IoT Policiy variables to create scalable policies. You can read more at https://docs.aws.amazon.com/iot/latest/developerguide/iot-policy-variables.html

Check also out this whitepaper for more information on the different options for creating a secure provisioning solution your IoT products: https://docs.aws.amazon.com/whitepapers/latest/device-manufacturing-provisioning/device-manufacturing-provisioning.html

AWS
EXPERT
answered a year ago
profile pictureAWS
EXPERT
Greg_B
reviewed a year ago
0

Thanks for the help. However it would be very helpful if I get some more in depth help regarding this. I am very much new to it.

answered 8 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions