AWS GovCloud (US-West) User Guide
AWS GovCloud (US-West) User Guide

AWS IoT Device Management

AWS IoT Device Management is a cloud-based device management service that makes it easy for customers to securely manage IoT devices throughout their lifecycle. Customers can use AWS IoT Device Management to onboard device information and configuration, organize their device inventory, monitor their fleet of devices, and remotely manage devices deployed across many locations. This remote management includes over-the-air (OTA) updates to device software.

The following list details the differences for using this service in the AWS GovCloud (US-West) Region compared to other AWS Regions:

  • Use of Amazon Cognito Identities to grant permissions to users of your AWS IoT applications, via your own identity provider or other popular identity providers, is not supported.

  • The AWS IoT Device Management endpoint does not yet support FIPS 140-2.

For more information about AWS IoT Device Management, see the AWS IoT Device Management documentation.

ITAR Boundary

AWS GovCloud (US) has an ITAR boundary, which defines where customers are allowed to store ITAR-controlled data for this service in the AWS GovCloud (US-West) Region. To maintain ITAR compliance, you must place ITAR-controlled data on the applicable part of the ITAR boundary. If you do not have any ITAR-controlled data in the AWS GovCloud (US-West) Region, this section does not apply to you. The following information identifies the ITAR boundary for this service:

ITAR-Regulated Data Permitted ITAR-Regulated Data Not Permitted
  • Message payloads

  • Device shadows (both keys and values)

  • Thing registry data (except thing names and thing attribute keys)

  • Message topics and topic filters

  • Thing names

  • Thing types

  • Thing group names

  • Rule definitions (including SQL statements and actions)

On this page: