Getting Started with Amazon AWS IoT and ESP8266

Getting Started with Amazon AWS IoT and ESP8266

Internet of Things (IoT) is being integrated in almost every device nowadays. There are number of hardware and software IoT platforms are available in market for building IoT based application. We have used few of hardware IoT devices like ESP32Raspberry Pi, and ESP8266 to build simple LED projects to complex applications. Also, Software platform for IoT like AdafruitIFTTTBlynk AppArtik cloudGoogle Firebase etc.

Not only in Ecommerce but Amazon is also focusing in IoT and providing cloud based service named as AWS IoT. Here, AWS IOT stands for Amazon Web Service Internet of Things. This service allows us to connect our devices to the internet for processing, operating and exchanging data securely. Along with AWS IOT the Amazon Web Services also provides tons of other features like virtual machine deployment, web-hosting, etc.

In our last tutorial of getting started with Amazon AWS IoT we have covered how to make Amazon AWS IoT Cloud account and how to access its features. Now, we will show that how you can connect ESP8266 NodeMCU with Amazon AWS IoT Cloud.



  1. Account on Amazon AWS cloud service (for this you can visit last article)
  2. ESP8266 nodemcu library installed in your Arduino IDE.
  3. ESP8266 nodemcu module and USB cable.

To perform this project you have to follow the below steps in sequential manner:


Creating AWS thing with Certificate and policy

Step 1:- After creating account, search for “iot core” under AWS service, click on it to open the console.

AWS Management Console


Step 2:- Now, a dialog box will appear; just click on “get started”, as shown below.

Getting Started with AWS IoT


Step 3:- The main page of AWS IoT will open, where you will find some documents for getting started with AWS IoT.

Now, on the left side Click on the “Manage” option.

Manage AWS Account for IoT Project


Step 4:- Now, register a thing to proceed. A thing is a device which can connect to the internet, so we will create a thing on this console through which our device can communicate.

Click on “Register a thing” button, as shown in the below-mentioned image:

 Register a Thing on Amazon AWS IoT


Step 5:- It on you that how much things you needed. As you can create multiple things or even a single. For getting started with AWS IoT we are creating a single things, so click on “create a single thing”.

 Create a Thing on Amazon AWS IoT


Step 6:- Name your thing, like I am giving myespwork. After naming, scroll down and click on next.

 Name your Thing on Amazon AWS IoT


Step 7:- Now click on “Create Certificate”.

 Create Certificate on Amazon AWS IoT


Step 8:- Now, AWS will provide the keys for the thing you created earlier. You can access this thing through these keys only. First, click on Activate button and download the three key files and save it on your PC.

Certificate Created on Amazon AWS IoT


The three files shown in above figure should be downloaded in a folder on you system.

Note: For some users the CA file downloaded in some other format, it might open as a stream of code. So, to get rid of this problem, just right click on the code and save as it in ‘.pem’ extension file.


Step 9:- After creating the certificate we need to create a policy for the thing. For this click on “Attach a policy”.

 Attach a Policy on Amazon AWS IoT


Step 10:- At this time there will be no policies in your account, since you haven’t created one, so for now click on “Register Thing”.

 Register Thing on Amazon AWS IoT


Step 11:- Now, a window will open, here you can create policy by clicking on “secure” and then “policies” in the left side menu.

Add Policy to your Thing on Amazon AWS IoT


Step 12:- Now click on “Create a policy”.

Create a Policy on Amazon AWS IoT


Step 13:- Here, name your policy according to you. And, in the action box type iot:* and in Resources ARN type *. Allow button should also be checked in it. Finally press the “Create” button on the end of the page to create a policy.

 Name your Policy on Amazon AWS IoT


Step 14:- Now, a window will open, here click on ‘secure’ and then ‘certificates’. Therefore, you have policy now, attach it by clicking on ‘certificates’ and then ‘Attach policy’.

 Setup Thing on Amazon AWS IoT


Step 15:- Now, select the name of the policy you have created and then click on “Attach” button.

Attach Policy and Certificate with Thing on Amazon AWS IoT


We have successfully created and attached a certificate and a policy with the thing. Now we can check if the thing is working by using the “test” option in the AWS IOT console. But before this we will need Broker address of our thing.


Getting AWS Thing details

After creating a thing we need to get the details of the thing like its broker address, update link, etc. to access the thing from anywhere. For this click on “Manage” option and then click on the name of the thing.

Manage AWS Thing Details for ESP8266


Now a window will open, in this navigate to “interact” and you will be provided all the links to access your things.

 Access Link of AWS Thing for ESP8266


The circled information is your AWS region which you will required later during programming and the whole HTTPS link is your AWS Domain, it will also required in your code so just copy this in your notepad.

AWS Domain for Connecting AWS IoT with ESP8266


This circled information is your AWS path which also you will be required in code.

That’s it for this service, now we will be required AWS ID and AWS secret key.


Getting AWS ID and AWS Secret key for AWS IoT

To get AWS ID and AWS secret key, navigate to services at top of this menu, and search for IAM.

AWS ID and AWS Secret Key for Connecting AWS IoT with ESP8266


Click on it and a welcome window will appear.

Access Management for Connecting AWS IoT with ESP8266


Here, click on “Users” and then add a user by clicking on “Add user”.

 Add User for Connecting AWS IoT with ESP8266


Now, give a user name and in Access type click on “Programmatic Access” and then click on “Next”.

Programmatic Access for Connecting AWS IoT with ESP8266


Again a window will pop-up, in this click on “create group”.

Create Group on AWS for Connecting AWS IoT with ESP8266


Name the group and click on “Create group”.

Setup Group on AWS for Connecting AWS IoT with ESP8266


Now, click on “Next” two times and after that a user will be created and you will be get your Access ID and secret access key. Also, you can download this credential file.

Download AWS Key Details for Connecting AWS IoT with ESP8266


Now, go back to the main window, and on the left hand side click on “Policies” and then “create policy”.

 Create Policy on AWS for Connecting AWS IoT with ESP8266


After that, search for “IoT”, and in actions go for “All IoT Actions” and in Resources go for “All resources” and then click on Review policy.

Review Policy on AWS for Connecting AWS IoT with ESP8266


Name your policy and click on “Create Policy” to create a policy for your things.

Policy Created on AWS for Connecting AWS IoT with ESP8266


Yippee! Your policy is created.

Now, we need to code our ESP8266 using Arduino IDE for Amazon AWS IoT Cloud.


Preparing ESP8266 NodeMCU with Arduino IDE for Amazon AWS IoT cloud

To work with AWS IoT cloud services we will be requiring its library so for this open your Arduino IDE and go to Sketch---->include library----->manage library and search for AWS library and there will be an AWS library for ESP8266, install it.

AWS Library for ESP8266


The Complete code for this project is given at the end, but before uploading in your NodeMCU you have to edit some parameters in code. Like, in the below code enter WiFi credentials of your network.

char *ssid="XXXXXXXXX";
char *password="XXXXXXX";


Now, in the below code, enter your parameters which you have got in the earlier steps. Now, after editing the code upload it in your ESP8266 NodeMCU.



Testing Esp8266 NodeMCU with Amazon AWS IoT

After uploading the code open AWS console in your browser and go to services and then go to IoT Core services again, in this click on “Manage” at left side of this menu.

Manage AWS Account for Connecting AWS IoT with ESP8266


Now select the thing you have created earlier and in this click on “Shadow” at left side of this menu.

Thing Created for Connecting AWS IoT with ESP8266


After that, in the shadow document window you will be observing a message sent by your ESP and real time also.

Test ESP8266 using Amazon AWS IoT


Now open serial monitor of your Arduino IDE and see the output message, as shown in the below image.

 Testing ESP8266 for Connecting with AWS IoT


This is how you can send data or message to AWS IoT cloud using ESP8266 NodeMCU.


#include <ESP8266WiFi.h>

#include <AmazonIOTClient.h>

#include "ESP8266AWSImplementations.h"

Esp8266HttpClient httpClient;

Esp8266DateTimeProvider dateTimeProvider;

AmazonIOTClient iotClient;

ActionError actionError;

char *ssid="Ashish";

char *password="XXXXXXXXXX";

void setup() {



  // Connect to WAP

  Serial.print("Connecting to ");


  WiFi.begin(ssid, password);

  while (WiFi.status() != WL_CONNECTED) {





  Serial.println("WiFi connected");

  Serial.println("IP address: ");













void loop(){

  char* shadow = "{\"state\":{\"reported\": {\"foobar\": \"bar\"}}}";

  char* result = iotClient.update_shadow(shadow, actionError);





Hi,  this sketch always return this error:

can't setup SSL connection



I use a esp8266 with Iot Core AWS


Thank you

Has anyone confirmed the http request is still formatted correctly?  I can use the signature data from the serial monitor to connect manually via https, but I get a "can't setup SSL connection" message from the serial monitor.

My guess is AWS changed something and the request no longer matches the protocol.

There is also some question as to whether we can update the shadow data directly with this method.

Thank you for any insight / comments.


I followed through the article and am getting the "can't setup SSL connection" error. Could you please help me out?

I have one question as well. Where do we use the certificated that we downloaded? I do not see them used anywhere in the program.

This guide is definitely incomplete. He has us download the cert, private key and root cert to a folder on our machine but never does anything with them. I'm fairly certain that the certs need to be flashed to to chip or something of the sort but I believe he forgot to show us.

This worked perfectly for me when I tried in 2018, on esp8266 ver2.3.0, it gives ssl error on the latest versions.
But when I tried it again today on 2.3.0, it is working but esp reboots after every aws request for shadow update.

Note- no need to create, download and use the certificates for aws thing created.

Add new comment

The content of this field is kept private and will not be shown publicly.

Plain text

  • No HTML tags allowed.
  • Lines and paragraphs break automatically.
  • Web page addresses and email addresses turn into links automatically.