AWS IoT Core IAM Setup
BonData connects to AWS IoT Core using an IAM access key, calling the IoT Device Management and Registry APIs in your chosen region.Step 1: Create an IAM User or Access Key
- Sign in to the AWS Management Console
- Open the IAM console and go to Users
- Create a dedicated user (for example
bondata-iot) or select an existing service user - Under Security credentials, create an Access key for programmatic access
Step 2: Attach a Least-Privilege Policy
- Attach a policy that grants only the read actions BonData needs, for example
iot:ListThings,iot:DescribeThing,iot:ListThingGroups,iot:GetThingShadow, andiot:ListCertificates - Avoid attaching broad managed policies such as
AWSIoTFullAccess
Follow the principle of least privilege. Scope the IAM policy to the specific IoT read actions and resources BonData requires rather than granting account-wide access.
Step 3: Note Your Region
- Identify the AWS region hosting your IoT Core endpoint (for example
us-east-1) - BonData directs API calls to this region
Step 4: Enter Credentials in BonData
- In BonData, navigate to Integrations and select AWS IoT Core
- Enter your Access Key ID, Secret Access Key, and Region
- Click Connect
Required Fields
Available Data
Once connected, BonData can sync the following AWS IoT Core data:- Things (Devices) - Registered devices with attributes and metadata
- Thing Types - Device type definitions and their searchable attributes
- Thing Groups - Static and dynamic groups used to organize devices
- Device Shadows - Reported and desired device state documents
- Topics / Telemetry - Message topics and device telemetry data
- Certificates - Device certificates and their status