步驟 1:建立 AWS IoT 政策 - AWS IoT Core

本文為英文版的機器翻譯版本,如內容有任何歧義或不一致之處,概以英文版為準。

步驟 1:建立 AWS IoT 政策

建立允許 Raspberry Pi 連線和傳送訊息 AWS IoT 的政策 AWS IoT。

  1. AWS IoT 主控台中,如果 Get started (開始) 按鈕出現,請選擇它。否則,請在導覽窗格中展開 Security (安全性),然後選擇 Policies (政策)

  2. 如果 You don’t have any policies yet (您尚未有任何政策) 對話方塊出現,請選擇 Create a policy (建立政策)。否則,請選擇 Create (建立)。

  3. 輸入 AWS IoT 政策的名稱 (例如 MoistureSensorPolicy)。

  4. Add statements (新增陳述式) 區段中,將現有政策取代為下列 JSON。以您的 和 AWS 帳戶 號碼取代區域 AWS 區域 和帳戶

    JSON
    {
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": "iot:Connect",
            "Resource": "arn:aws:iot:us-east-1:111122223333:client/RaspberryPi"
        },
        {
            "Effect": "Allow",
            "Action": "iot:Publish",
            "Resource": [
                "arn:aws:iot:us-east-1:111122223333:topic/$aws/things/RaspberryPi/shadow/update",
                "arn:aws:iot:us-east-1:111122223333:topic/$aws/things/RaspberryPi/shadow/delete",
                "arn:aws:iot:us-east-1:111122223333:topic/$aws/things/RaspberryPi/shadow/get"
            ]
        },
        {
            "Effect": "Allow",
            "Action": "iot:Receive",
            "Resource": [
                "arn:aws:iot:us-east-1:111122223333:topic/$aws/things/RaspberryPi/shadow/update/accepted",
                "arn:aws:iot:us-east-1:111122223333:topic/$aws/things/RaspberryPi/shadow/delete/accepted",
                "arn:aws:iot:us-east-1:111122223333:topic/$aws/things/RaspberryPi/shadow/get/accepted",
                "arn:aws:iot:us-east-1:111122223333:topic/$aws/things/RaspberryPi/shadow/update/rejected",
                "arn:aws:iot:us-east-1:111122223333:topic/$aws/things/RaspberryPi/shadow/delete/rejected"
            ]
        },
        {
            "Effect": "Allow",
            "Action": "iot:Subscribe",
            "Resource": [
                "arn:aws:iot:us-east-1:111122223333:topicfilter/$aws/things/RaspberryPi/shadow/update/accepted",
                "arn:aws:iot:us-east-1:111122223333:topicfilter/$aws/things/RaspberryPi/shadow/delete/accepted",
                "arn:aws:iot:us-east-1:111122223333:topicfilter/$aws/things/RaspberryPi/shadow/get/accepted",
                "arn:aws:iot:us-east-1:111122223333:topicfilter/$aws/things/RaspberryPi/shadow/update/rejected",
                "arn:aws:iot:us-east-1:111122223333:topicfilter/$aws/things/RaspberryPi/shadow/delete/rejected"
            ]
        },
        {
            "Effect": "Allow",
            "Action": [
                "iot:GetThingShadow",
                "iot:UpdateThingShadow",
                "iot:DeleteThingShadow"
            ],
            "Resource": "arn:aws:iot:us-east-1:111122223333:thing/RaspberryPi"
        }
    ]
}

  5. 選擇建立