I see. I had assumed that, because you couldn’t attach policies to them, other IAM credentials wouldn’t be authorized to publish or subscribe to any topics.

[Edit: originally, I thought IAM policies for IoT didn’t allow the specification of topics as resources. They do, which means that you are able to restrict the topics that unauthenticated Cognito users and IAM roles can publish and subscribe to]

Cloud Robotics Research Scientist at @iRobot

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store