Creating and configuring AWS-managed domains - AWS IoT Core

Creating and configuring AWS-managed domains

You create a configurable endpoint on an AWS-managed domain by using the CreateDomainConfiguration API. A domain configuration for an AWS-managed domain consists of the following:

  • domainConfigurationName – A user-defined name that identifies the domain configuration.


    Domain configuration names that start with IoT: are reserved for default endpoints and can't be used. Also, this value must be unique to your AWS Region.

  • defaultAuthorizerName (optional) – The name of the custom authorizer to use on the endpoint.

  • allowAuthorizerOverride – A Boolean value that specifies whether devices can override the default authorizer by specifying a different authorizer in the HTTP header of the request. This value is required if a value for defaultAuthorizerName is specified.

  • serviceType – AWS IoT currently supports only the DATA service type. When you specify DATA, AWS IoT returns an endpoint with an endpoint type of iot:Data-ATS. You can't create a configurable iot:Data (VeriSign) endpoint.

The following AWS CLI command creates domain configuration for a Data endpoint.

aws iot create-domain-configuration --domain-configuration-name "myDomainConfigurationName" --service-type "DATA"