Audit Mitigation Action Task Id AWS IoT Device Management AWS IoT Device Management is a cloud-based device management service that makes it easy for customers to securely manage IoT devices throughout their lifecycle. Customers can use AWS IoT Device Management to onboard device information and configuration, organize their device inventory, monitor their ﬂeet of devices, and remotely manage devices deployed across many locations. This remote management includes over-the-air (OTA) updates to device software. How AWS IoT Device Management Differs for AWS GovCloud (US) • Use of Amazon Cognito Identities to grant permissions to users of your AWS IoT applications, via your own identity provider or other popular identity providers, is not supported. • The AWS IoT Device Management endpoint does not yet support FIPS 140-2. Documentation for AWS IoT Device Management AWS IoT Device Management documentation . 123
AWS GovCloud (US) User Guide AWS GovCloud (US) User Guide ITAR Boundary ITAR Boundary AWS GovCloud (US) has an ITAR boundary, which defines where customers are allowed to store ITAR- controlled data for this service in AWS GovCloud (US) Regions. To maintain ITAR compliance, you must place ITAR-controlled data on the applicable part of the ITAR boundary. If you do not have any ITAR-controlled data in AWS GovCloud (US) Regions, this section does not apply to you. The following information identifies the ITAR boundary for this service: ITAR-Regulated Data Permitted ITAR-Regulated Data Not Permitted • Message payloads • Device shadows (both keys and values) • Thing registry data (except thing names and thing attribute keys) • Message topics and topic filters • Thing names • Thing types • Thing group names • Rule definitions (including SQL statements and actions) AWS IoT Greengrass This service is currently available in AWS GovCloud (US-West) only. AWS IoT Greengrass seamlessly extends AWS to edge devices so they can act locally on the data they generate, while still using the cloud for management, analytics, and durable storage. With AWS IoT Greengrass, connected devices can run AWS Lambda functions, execute predictions based on machine learning models, keep device data in sync, and communicate with other devices securely even when not connected to the Internet. How AWS IoT Greengrass Differs for AWS GovCloud (US) • AWS IoT Greengrass Core software v1.9.2 is the minimum supported version. • The following minimum versions of the AWS IoT Greengrass Core SDK are supported. Language or platform Minimum version Python 3.7 1.4.0 Java 8 1.3.1 Node.js 8.10 1.4.0 C, C++ 1.1.0 • Secret resource types (which integrate with AWS Secrets Manager) are not supported. • Only the following connectors are available: • Modbus-RTU Protocol Adapter v2 • Raspberry Pi GPIO v2 • Serial Stream v2 • For over-the-air (OTA) updates, the IAM role used to presign the Amazon S3 URL (that links to the Greengrass software update) must allow access in the appropriate AWS Region. The following 124
AWS GovCloud (US) User Guide AWS GovCloud (US) User Guide
You've reached the end of your free preview.
Want to read all 187 pages?
- Fall '19
- Amazon Web Services, AWS, Amazon S3, Amazon Elastic Compute Cloud, AWS GovCloud