Amazon FreeRTOS
User Guide

The AWS Documentation website is getting a new look!
Try it now and let us know what you think. Switch to the new look >>

You can return to the original look by selecting English in the language selector above.

Creating a Code-Signing Certificate for Custom Hardware

Using an appropriate toolset, create a self-signed certificate and private key for your hardware.

You need to use the AWS Command Line Interface to import your code-signing certificate, private key, and certificate chain into AWS Certificate Manager. For information about installing the AWS CLI, see Installing the AWS CLI.

After you create your code-signing certificate, you can use the AWS CLI to import it into ACM:

aws acm import-certificate --certificate file://code-sign.crt --private-key file://code-sign.key

The output from this command displays an ARN for your certificate. You need this ARN when you create an OTA update job.

ACM requires certificates to use specific algorithms and key sizes. For more information, see Prerequisites for Importing Certificates. For more information about ACM, see Importing Certificates into AWS Certificate Manager.

You must copy, paste, and format the contents of your code-signing certificate and private key into the aws_ota_codesigner_certificate.h file that is part of the Amazon FreeRTOS code you download later.