When we create an identity pool, we have an unauthenticated role in the result. This role should be configured on AWS IAM in order to access AWS IoT.

1. Open the browser and navigate to https://console.aws.amazon.com/iam/. You should get the AWS IAM dashboard. Select Roles on the left menu. Find your unauthenticated role name that is used by your identity pool.
2. On the role summary from the identity pool for the unauthenticated role, you should add the AWSIoTDataAccess policy. To do that, you can click on the Permissions tab. Then, click on the Attach policy button. Find the AWSIoTDataAccess policy and check it, as shown in the following screenshot:

3. Click on the Attach policy button once done.
4. You should see the AWSIoTDataAccess policy in your identity role, as shown in the following screenshot:

Now your identity pool can access AWS IoT data resources. Next, we will develop a sensor publisher application to send sensor data to AWS IoT.