AWS IoT Managed Integrations Service (iotmanagedintegrations)

2025-03-04

57 new actions, 4 new resources

Additions

    Actions
  • CreateCredentialLocker
    • Description:  Grants permission to create a product credential locker. This operation will trigger the creation of all the manufacturing resources including Wi-Fi setup key pair and device certificate
    • Access:  Write
  • CreateDestination
    • Description:  Grants permission to create a destination
    • Access:  Write
  • CreateEventLogConfiguration
    • Description:  Grants permission to set the event log configuration for the account, a resource type, or a specific resource
    • Access:  Write
  • CreateManagedThing
    • Description:  Grants permission to create a Managed Thing
    • Access:  Write
  • CreateNotificationConfiguration
    • Description:  Grants permission to create a notification configuration
    • Access:  Write
  • CreateOtaTask
    • Description:  Grants permission to customers to create an OTA task to update their devices
    • Access:  Write
  • CreateOtaTaskConfiguration
    • Description:  Grants permission to create an OTA task configuration
    • Access:  Write
  • CreateProvisioningProfile
    • Description:  Grants permission to create a new provisioning profile
    • Access:  Write
  • DeleteCredentialLocker
    • Description:  Grants permission to delete a Credential Locker. This operation cannot be undone and any existing device won't be able to use the IoT Managed Integrations Setup
    • Access:  Write
    • Resources: 

      Name: CredentialLockerResource

      Required: Yes

  • DeleteDestination
    • Description:  Grants permission to delete a destination
    • Access:  Write
  • DeleteEventLogConfiguration
    • Description:  Grants permission to delete an event log configuration by log configuration ID
    • Access:  Write
  • DeleteManagedThing
    • Description:  Grants permission to delete a managed thing. If a Controller is deleted, all the devices connected to it will have their status changed to pending. Note, it is not possible to remove a Cloud device
    • Access:  Write
    • Resources: 

      Name: ManagedThingResource

      Required: Yes

  • DeleteNotificationConfiguration
    • Description:  Grants permission to delete a notification configuration
    • Access:  Write
  • DeleteOtaTask
    • Description:  Grants permission to delete an OTA task
    • Access:  Write
    • Resources: 

      Name: OtaTaskResource

      Required: Yes

  • DeleteOtaTaskConfiguration
    • Description:  Grants permission to delete a OTA task configuration
    • Access:  Write
  • DeleteProvisioningProfile
    • Description:  Grants permission to delete a provisioning Profile
    • Access:  Write
    • Resources: 

      Name: ProvisioningProfileResource

      Required: Yes

  • GetCredentialLocker
    • Description:  Grants permission to get an existing Credential Locker information
    • Access:  Read
    • Resources: 

      Name: CredentialLockerResource

      Required: Yes

  • GetCustomEndpoint
    • Description:  Grants permission to customers to retrieve the custom endpoint address
    • Access:  Read
  • GetDefaultEncryptionConfiguration
    • Description:  Grants permission to get a connector by AWS ARN
    • Access:  Read
  • GetDestination
    • Description:  Grants permission to get a destination
    • Access:  Read
  • GetDeviceDiscovery
    • Description:  Grants permission to get the current state of a device discovery
    • Access:  Read
  • GetEventLogConfiguration
    • Description:  Grants permission to get an event log configuration by log configuration ID
    • Access:  Read
  • GetHubConfiguration
    • Description:  Grants permission to get hub configuration
    • Access:  Read
  • GetManagedThing
    • Description:  Grants permission to get a managed thing
    • Access:  Read
    • Resources: 

      Name: ManagedThingResource

      Required: Yes

  • GetManagedThingCapabilities
    • Description:  Grants permission to get capabilities by ManagedThingId
    • Access:  Read
    • Resources: 

      Name: ManagedThingResource

      Required: Yes

  • GetManagedThingConnectivityData
    • Description:  Grants permission to get the connectivity status of a Managed Thing
    • Access:  Read
    • Resources: 

      Name: ManagedThingResource

      Required: Yes

  • GetManagedThingMetaData
    • Description:  Grants permission to get metaData info by ManagedThingId
    • Access:  Read
    • Resources: 

      Name: ManagedThingResource

      Required: Yes

  • GetManagedThingState
    • Description:  Grants permission to get managed thing states by managed thing id
    • Access:  Read
    • Resources: 

      Name: ManagedThingResource

      Required: Yes

  • GetNotificationConfiguration
    • Description:  Grants permission to get a notification configuration
    • Access:  Read
  • GetOtaTask
    • Description:  Grants permission to get the Ota task
    • Access:  Read
    • Resources: 

      Name: OtaTaskResource

      Required: Yes

  • GetOtaTaskConfiguration
    • Description:  Grants permission to get an OTA task configuration
    • Access:  Read
  • GetProvisioningProfile
    • Description:  Grants permission to get an existing provisioning profile information
    • Access:  Read
    • Resources: 

      Name: ProvisioningProfileResource

      Required: Yes

  • GetRuntimeLogConfiguration
    • Description:  Grants permission to get runtime log configuration for a specific managed thing or for all managed things as a group
    • Access:  Read
  • GetSchemaVersion
    • Description:  Grants permission to get a schema version with the provided information
    • Access:  Read
  • ListCredentialLockers
    • Description:  Grants permission to list the existing Credential Locker
    • Access:  List
  • ListDestinations
    • Description:  Grants permission to list all the destinations
    • Access:  List
  • ListEventLogConfigurations
    • Description:  Grants permission to list all event log configurations for account
    • Access:  List
  • ListManagedThingSchemas
    • Description:  Grants permission to list Schemas Associated With Managed Thing
    • Access:  Read
    • Resources: 

      Name: ManagedThingResource

      Required: Yes

  • ListManagedThings
    • Description:  Grants permission to list all the managed things
    • Access:  List
  • ListNotificationConfigurations
    • Description:  Grants permission to list all the notification configurations
    • Access:  List
  • ListOtaTaskConfigurations
    • Description:  Grants permission to list all the OTA task configurations
    • Access:  List
  • ListOtaTaskExecutions
    • Description:  Grants permission to list all the Ota task executions
    • Access:  Read
    • Resources: 

      Name: OtaTaskResource

      Required: Yes

  • ListOtaTasks
    • Description:  Grants permission to list all the OTA tasks
    • Access:  List
  • ListProvisioningProfiles
    • Description:  Grants permission to list the existing provisioning profile
    • Access:  List
  • ListSchemaVersions
    • Description:  Grants permission to list schema versions with the provided information
    • Access:  List
  • PutDefaultEncryptionConfiguration
    • Description:  Grants permission to associate KMS key with IoT Managed Integration service
    • Access:  Write
  • PutHubConfiguration
    • Description:  Grants permission to update a hub configuration
    • Access:  Write
  • PutRuntimeLogConfiguration
    • Description:  Grants permission to set the runtime log configuration for a specific managed thing or for all managed things as a group
    • Access:  Write
  • RegisterCustomEndpoint
    • Description:  Grants permission to customers to request us to manage the server trust for them or bring their own external server trusts for the custom domain
    • Access:  Write
  • ResetRuntimeLogConfiguration
    • Description:  Grants permission to reset a runtime log configuration for a specific managed thing or for all managed things as a group
    • Access:  Write
  • SendManagedThingCommand
    • Description:  Grants permission to use the SendManagedThingCommand API to send commands to managed things
    • Access:  Write
  • StartDeviceDiscovery
    • Description:  Grants permission to request to start device discovery
    • Access:  Write
  • UpdateDestination
    • Description:  Grants permission to update a destination
    • Access:  Write
  • UpdateEventLogConfiguration
    • Description:  Grants permission to update an event log configuration by log configuration ID
    • Access:  Write
  • UpdateManagedThing
    • Description:  Grants permission to update a managed thing
    • Access:  Write
    • Resources: 

      Name: ManagedThingResource

      Required: Yes

  • UpdateNotificationConfiguration
    • Description:  Grants permission to update a notification configuration
    • Access:  Write
  • UpdateOtaTask
    • Description:  Grants permission to update an OTA Task
    • Access:  Write
    • Resources: 

      Name: OtaTaskResource

      Required: Yes

    Resources
  • CredentialLockerResource
    • Arn:  arn:${Partition}:iotmanagedintegrations:${Region}:${Account}:credential-locker/${Identifier}
  • ManagedThingResource
    • Arn:  arn:${Partition}:iotmanagedintegrations:${Region}:${Account}:managed-thing/${Identifier}
  • OtaTaskResource
    • Arn:  arn:${Partition}:iotmanagedintegrations:${Region}:${Account}:ota-task/${Identifier}
  • ProvisioningProfileResource
    • Arn:  arn:${Partition}:iotmanagedintegrations:${Region}:${Account}:provisioning-profile/${Identifier}