3. Install the certificates in the device file system
Your device must establish a secure connection with AWS IoT using X.509 certificates. You must generate these certificates and register them in your AWS account:
- To create and register the certificates, see the AWS IoT documentation.
- Install the certificate and private key associated with your device, for example inside the/etc/ssl/certs directory.
- <root_ca_file_name> is the Verisign root CA server certificate used to authenticate the AWS IoT server. You can download it from https://www.symantec.com/content/en/us/enterprise/verisign/roots/VeriSign-Class%203-Public-Primary-Certification-Authority-G5.pem.
- <signed_cert_file_name> is the certificate attached to your Thing.
- <private_key_file_name> is the Thing's private key.
- <ip> is your device IP.
~> scp <root_ca_file_name> root@<ip>:/etc/ssl/certs/ ~> scp <signed_cert_file_name> root@<ip>:/etc/ssl/certs/ ~> scp <private_key_file_name> root@<ip>:/etc/ssl/certs/ ~> sync
