I have created
- iot core vpc endpoint
- A record in a custom domain(not in xxxxxxxxxx-ats.iot.us-east-1.amazonaws.com format) in Private Hosted which routes to iot core vpce
I can connect to public Iot core endpoint from device. if I use endpoint defined in private hosted zone I get following error
Failed to connect: aws-c-io: AWS_IO_TLS_ERROR_NEGOTIATION_FAILURE, TLS (SSL) negotiation failed
So I have following questions,
- I am using same rootCA with public endpoint, could this be the reason for error?
- Is it ok to use same rootCA for private hosted zone and public endpoint if domain names are same?
- Should I create custom domain and CA to support different domains?
