Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Connecting over websockets without root CA?

See original GitHub issue

Is it possible to connect without a root CA, using only an access key id and secret access key?

from AWSIoTPythonSDK.MQTTLib import AWSIoTMQTTClient

clientId = "my-client-id"
clientEndpoint = "my-client-endpoint"
accessKeyId = "my-access-key-id"
secretAccessKey = "my-secret-access-key"

myAWSIoTMQTTClient = AWSIoTMQTTClient(clientId, useWebsocket=True)
myAWSIoTMQTTClient.configureEndpoint(clientEndpoint, 443)
myAWSIoTMQTTClient.configureIAMCredentials(accessKeyId, secretAccessKey)
myAWSIoTMQTTClient.connect()

Should the above code work? It throws “AWSIoTPythonSDK.exception.AWSIoTExceptions.connectTimeoutException” with no other errors.

Issue Analytics

State:
Created 5 years ago
Comments:7 (1 by maintainers)

Top GitHub Comments

1reaction

rccarpercommented, Jun 8, 2020

For security reasons, if the above change fixes your issue, we do recommend trying to narrow down the policy to only the necessary permissions.

0reactions

delijaticommented, Jun 3, 2020

This solved it for us https://github.com/aws/aws-iot-device-sdk-python/issues/167#issuecomment-430675269 ->

iot:connect permissions?

{
    "Version": "2012-10-17",
    "Statement": [
        ... # more permissions
        {
            "Effect": "Allow",
            "Action": [
                "iot:*"
            ],
            "Resource": [
                "*"
            ]
        }
    ]
}