From bc563767ee2e86bd077baafc289de6e9156b1df1 Mon Sep 17 00:00:00 2001
From: Kevin BEAUGRAND <9513635+kbeaugrand@users.noreply.github.com>
Date: Wed, 31 May 2023 10:44:34 +0200
Subject: [PATCH] Add Greengrass automagic deployment + Greengrass create and
 delete from Portal (#2123)

* Create DeviceCredentials, CertificateCredentials and rename EnrollmentCredentials to SymmetricCredentials

* Add certificate generations steps

* Fix #2074  - add greengrass policies

* fix #2074 - Create Greengrass enrollement script

* Fix unit tests

* Add unit tests to cover AWS provider

---------

Co-authored-by: ropiteauxi <ivan.ropiteaux@cgi.com>
---
 .devcontainer/Dockerfile                      |   46 +-
 .../Providers/IDeviceRegistryProvider.cs      |    4 +-
 .../Services/AWS/IAWSExternalDeviceService.cs |    2 +
 .../Services/IDeviceService.cs                |    2 +-
 .../Services/IEdgeDevicesService.cs           |    2 +
 .../Services/IExternalDeviceService.cs        |   12 +-
 .../Devices/ConnectionStringDialog.razor      |    2 +-
 .../EdgeDevices/ConnectionStringDialog.razor  |   83 +-
 .../EdgeDevices/CreateEdgeDevicePage.razor    |   22 +-
 .../EdgeDevices/EdgeDeviceDetailPage.razor    |    2 +-
 .../Services/DeviceClientService.cs           |    4 +-
 .../Services/EdgeDeviceClientService.cs       |    9 +-
 .../Services/IDeviceClientService.cs          |    2 +-
 .../Services/IEdgeDeviceClientService.cs      |    4 +-
 .../AzureIoTHub.Portal.Infrastructure.csproj  |   11 +-
 .../AWS/debian_11_bullseye                    |   57 +
 .../Helpers/EdgeEnrollementHelper.cs          |   24 +
 .../Helpers/IEdgeEnrollementHelper.cs         |   10 +
 .../PortalDbContext.cs                        |    6 +-
 .../Providers/AzureDeviceRegistryProvider.cs  |   17 +-
 .../Services/AWS/AWSDeviceService.cs          |    5 +-
 .../Services/AWS/AWSExternalDeviceService.cs  |    7 +-
 .../Services/AwsExternalDeviceService.cs      |  282 +-
 .../Services/DeviceServiceBase.cs             |    4 +-
 .../Startup/IServiceCollectionExtension.cs    |    1 +
 ...30529162823_Add dataprotection.Designer.cs |  609 +++
 .../20230529162823_Add dataprotection.cs      |   40 +
 .../PortalDbContextModelSnapshot.cs           |   21 +-
 .../AzureIoTHub.Portal.Server.csproj          |   15 +-
 .../Controllers/v1.0/DevicesController.cs     |    2 +-
 .../Controllers/v1.0/DevicesControllerBase.cs |    2 +-
 .../Controllers/v1.0/EdgeDevicesController.cs |   72 +-
 .../v1.0/LoRaWAN/LoRaWANDevicesController.cs  |    4 +-
 .../Services/AWSEdgeDevicesService.cs         |  168 +
 ...sService.cs => AzureEdgeDevicesService.cs} |  200 +-
 .../Services/EdgeDevicesServiceBase.cs        |  205 +
 .../Services/ExternalDeviceService.cs         | 1436 +++---
 src/AzureIoTHub.Portal.Server/Startup.cs      |   12 +-
 .../Models/v1.0/CertificateCredentials.cs     |   27 +
 .../Models/v1.0/DeviceCredentials.cs          |   33 +
 .../Models/v1.0/IoTEdgeDevice.cs              |    1 -
 ...Credentials.cs => SymmetricCredentials.cs} |    3 +-
 .../Devices/ConnectionStringDialogTests.cs    |    2 +-
 .../ConnectionStringDialogTests.cs            |   11 +-
 .../EdgeDevices/CreateEdgeDevicePageTest.cs   |    2 +
 .../Services/DeviceClientServiceTests.cs      |    2 +-
 .../Services/EdgeDeviceClientServiceTests.cs  |    2 +-
 .../AzureDeviceRegistryProviderTests.cs       |   16 +-
 .../Services/AWSDeviceServiceTests.cs         |    5 +-
 .../Services/AwsExternalDeviceServiceTests.cs |  280 +-
 .../v1.0/DevicesControllerTests.cs            |   10 +-
 .../v1.0/EdgeDevicesControllerTests.cs        |  143 +-
 .../Server/Services/DeviceServiceTests.cs     |    4 +-
 .../Server/Services/EdgeDeviceServiceTest.cs  |   12 +-
 .../Services/ExternalDeviceServiceTests.cs    | 4258 +++++++++--------
 templates/aws/awsdeploy.yml                   |   61 +
 56 files changed, 5111 insertions(+), 3167 deletions(-)
 create mode 100644 src/AzureIoTHub.Portal.Infrastructure/EdgeEnrollementScripts/AWS/debian_11_bullseye
 create mode 100644 src/AzureIoTHub.Portal.Infrastructure/Helpers/EdgeEnrollementHelper.cs
 create mode 100644 src/AzureIoTHub.Portal.Infrastructure/Helpers/IEdgeEnrollementHelper.cs
 create mode 100644 src/AzureIoTHub.Portal.Postgres/Migrations/20230529162823_Add dataprotection.Designer.cs
 create mode 100644 src/AzureIoTHub.Portal.Postgres/Migrations/20230529162823_Add dataprotection.cs
 create mode 100644 src/AzureIoTHub.Portal.Server/Services/AWSEdgeDevicesService.cs
 rename src/AzureIoTHub.Portal.Server/Services/{EdgeDevicesService.cs => AzureEdgeDevicesService.cs} (53%)
 create mode 100644 src/AzureIoTHub.Portal.Server/Services/EdgeDevicesServiceBase.cs
 create mode 100644 src/AzureIoTHub.Portal.Shared/Models/v1.0/CertificateCredentials.cs
 create mode 100644 src/AzureIoTHub.Portal.Shared/Models/v1.0/DeviceCredentials.cs
 rename src/AzureIoTHub.Portal.Shared/Models/v1.0/{EnrollmentCredentials.cs => SymmetricCredentials.cs} (95%)

diff --git a/.devcontainer/Dockerfile b/.devcontainer/Dockerfile
index 7a78a91a6..62ef74ae7 100644
--- a/.devcontainer/Dockerfile
+++ b/.devcontainer/Dockerfile
@@ -1,18 +1,30 @@
-# See here for image contents: https://github.com/microsoft/vscode-dev-containers/tree/v0.238.0/containers/dotnet/.devcontainer/base.Dockerfile
-
-# [Choice] .NET version: 6.0, 3.1, 6.0-bullseye, 3.1-bullseye, 6.0-focal, 3.1-focal
-ARG VARIANT="7.0-bullseye-slim"
-FROM mcr.microsoft.com/vscode/devcontainers/dotnet:dev-${VARIANT}
-
-# [Choice] Node.js version: none, lts/*, 18, 16, 14
-ARG NODE_VERSION="none"
-RUN if [ "${NODE_VERSION}" != "none" ]; then su vscode -c "umask 0002 && . /usr/local/share/nvm/nvm.sh && nvm install ${NODE_VERSION} 2>&1"; fi
-
-# [Optional] Uncomment this section to install additional OS packages.
-# RUN apt-get update && export DEBIAN_FRONTEND=noninteractive \
-#    && apt-get -y install --no-install-recommends moby-engine moby-cli moby-build moby-run 
-
-# [Optional] Uncomment this line to install global node packages.
-# RUN su vscode -c "source /usr/local/share/nvm/nvm.sh && npm install -g <your-package-here>" 2>&1
-
+# See here for image contents: https://github.com/microsoft/vscode-dev-containers/tree/v0.238.0/containers/dotnet/.devcontainer/base.Dockerfile
+
+# [Choice] .NET version: 6.0, 3.1, 6.0-bullseye, 3.1-bullseye, 6.0-focal, 3.1-focal
+ARG VARIANT="7.0-bullseye-slim"
+FROM mcr.microsoft.com/vscode/devcontainers/dotnet:dev-${VARIANT}
+
+# [Choice] Node.js version: none, lts/*, 18, 16, 14
+ARG NODE_VERSION="none"
+RUN if [ "${NODE_VERSION}" != "none" ]; then su vscode -c "umask 0002 && . /usr/local/share/nvm/nvm.sh && nvm install ${NODE_VERSION} 2>&1"; fi
+
+# [Optional] Uncomment this section to install additional OS packages.
+# RUN apt-get update && export DEBIAN_FRONTEND=noninteractive \
+#    && apt-get -y install --no-install-recommends moby-engine moby-cli moby-build moby-run 
+
+# [Optional] Uncomment this line to install global node packages.
+# RUN su vscode -c "source /usr/local/share/nvm/nvm.sh && npm install -g <your-package-here>" 2>&1
+
+RUN sudo apt-get update && \
+    sudo apt-get -y install ca-certificates curl gnupg && \
+    sudo install -m 0755 -d /etc/apt/keyrings && \
+    curl -fsSL https://download.docker.com/linux/debian/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg && \
+    sudo chmod a+r /etc/apt/keyrings/docker.gpg && \
+    echo \
+        "deb [arch="$(dpkg --print-architecture)" signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/debian \
+        "$(. /etc/os-release && echo "$VERSION_CODENAME")" stable" | \
+        sudo tee /etc/apt/sources.list.d/docker.list > /dev/null && \
+    sudo apt-get update && \
+    sudo apt-get install -y docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin
+
 RUN dotnet dev-certs https
\ No newline at end of file
diff --git a/src/AzureIoTHub.Portal.Application/Providers/IDeviceRegistryProvider.cs b/src/AzureIoTHub.Portal.Application/Providers/IDeviceRegistryProvider.cs
index f932c4e69..0c0229387 100644
--- a/src/AzureIoTHub.Portal.Application/Providers/IDeviceRegistryProvider.cs
+++ b/src/AzureIoTHub.Portal.Application/Providers/IDeviceRegistryProvider.cs
@@ -5,9 +5,9 @@ namespace AzureIoTHub.Portal.Application.Providers
 {
     using System.Threading;
     using System.Threading.Tasks;
-    using AzureIoTHub.Portal.Models.v10;
     using Microsoft.Azure.Devices.Provisioning.Service;
     using Microsoft.Azure.Devices.Shared;
+    using Shared.Models.v10;
 
     public interface IDeviceRegistryProvider
     {
@@ -38,7 +38,7 @@ public interface IDeviceRegistryProvider
         /// </summary>
         /// <param name="deviceId">The device identifier.</param>
         /// <param name="modelId">The device model id.</param>
-        Task<EnrollmentCredentials> GetEnrollmentCredentialsAsync(string deviceId, string modelId);
+        Task<DeviceCredentials> GetEnrollmentCredentialsAsync(string deviceId, string modelId);
 
         Task DeleteEnrollmentGroupAsync(EnrollmentGroup enrollmentGroup, CancellationToken cancellationToken);
 
diff --git a/src/AzureIoTHub.Portal.Application/Services/AWS/IAWSExternalDeviceService.cs b/src/AzureIoTHub.Portal.Application/Services/AWS/IAWSExternalDeviceService.cs
index 57474977f..35887ebf8 100644
--- a/src/AzureIoTHub.Portal.Application/Services/AWS/IAWSExternalDeviceService.cs
+++ b/src/AzureIoTHub.Portal.Application/Services/AWS/IAWSExternalDeviceService.cs
@@ -20,5 +20,7 @@ public interface IAWSExternalDeviceService
         Task<GetThingShadowResponse> GetDeviceShadow(string deviceName);
 
         Task<UpdateThingShadowResponse> UpdateDeviceShadow(UpdateThingShadowRequest shadow);
+
+
     }
 }
diff --git a/src/AzureIoTHub.Portal.Application/Services/IDeviceService.cs b/src/AzureIoTHub.Portal.Application/Services/IDeviceService.cs
index b34735473..68822d04d 100644
--- a/src/AzureIoTHub.Portal.Application/Services/IDeviceService.cs
+++ b/src/AzureIoTHub.Portal.Application/Services/IDeviceService.cs
@@ -35,7 +35,7 @@ Task<PaginatedResult<DeviceListItem>> GetDevices(
 
         Task DeleteDevice(string deviceId);
 
-        Task<EnrollmentCredentials> GetCredentials(string deviceId);
+        Task<DeviceCredentials> GetCredentials(string deviceId);
 
         Task<IEnumerable<LoRaDeviceTelemetryDto>> GetDeviceTelemetry(string deviceId);
 
diff --git a/src/AzureIoTHub.Portal.Application/Services/IEdgeDevicesService.cs b/src/AzureIoTHub.Portal.Application/Services/IEdgeDevicesService.cs
index 51785a979..2a02c8334 100644
--- a/src/AzureIoTHub.Portal.Application/Services/IEdgeDevicesService.cs
+++ b/src/AzureIoTHub.Portal.Application/Services/IEdgeDevicesService.cs
@@ -33,5 +33,7 @@ Task<PaginatedResult<IoTEdgeListItem>> GetEdgeDevicesPage(
         Task<C2Dresult> ExecuteModuleCommand(string deviceId, string moduleName, string commandName);
 
         Task<IEnumerable<LabelDto>> GetAvailableLabels();
+
+        Task<string> GetEdgeDeviceEnrollementScript(string deviceId, string templateName);
     }
 }
diff --git a/src/AzureIoTHub.Portal.Application/Services/IExternalDeviceService.cs b/src/AzureIoTHub.Portal.Application/Services/IExternalDeviceService.cs
index 497adf033..5d17b76f9 100644
--- a/src/AzureIoTHub.Portal.Application/Services/IExternalDeviceService.cs
+++ b/src/AzureIoTHub.Portal.Application/Services/IExternalDeviceService.cs
@@ -9,6 +9,7 @@ namespace AzureIoTHub.Portal.Application.Services
     using Microsoft.Azure.Devices;
     using Microsoft.Azure.Devices.Shared;
     using AzureIoTHub.Portal.Domain.Shared;
+    using Shared.Models.v10;
 
     public interface IExternalDeviceService
     {
@@ -21,10 +22,13 @@ public interface IExternalDeviceService
         Task<Twin> GetDeviceTwin(string deviceId);
 
         Task<Twin> GetDeviceTwinWithModule(string deviceId);
+
         Task<Twin> GetDeviceTwinWithEdgeHubModule(string deviceId);
 
         Task<BulkRegistryOperationResult> CreateDeviceWithTwin(string deviceId, bool isEdge, Twin twin, DeviceStatus isEnabled);
 
+        Task<bool> CreateEdgeDevice(string deviceId);
+
         Task<Device> UpdateDevice(Device device);
 
         Task<Twin> UpdateDeviceTwin(Twin twin);
@@ -64,9 +68,9 @@ Task<PaginationResult<Twin>> GetAllEdgeDevice(
 
         Task<int> GetConcentratorsCount();
 
-        Task<EnrollmentCredentials> GetEnrollmentCredentials(string deviceId);
+        Task<DeviceCredentials> GetDeviceCredentials(string deviceId);
 
-        Task<EnrollmentCredentials> GetEdgeDeviceCredentials(string edgeDeviceId);
+        Task<DeviceCredentials> GetEdgeDeviceCredentials(IoTEdgeDevice device);
 
         Task<ConfigItem> RetrieveLastConfiguration(Twin twin);
 
@@ -75,5 +79,9 @@ Task<PaginationResult<Twin>> GetAllEdgeDevice(
         Task<List<string>> GetAllGatewayID();
 
         Task<IEnumerable<string>> GetDevicesToExport();
+
+        Task<string> CreateEnrollementScript(string template, Domain.Entities.EdgeDevice device);
+
+        Task RemoveDeviceCredentials(IoTEdgeDevice device);
     }
 }
diff --git a/src/AzureIoTHub.Portal.Client/Pages/Devices/ConnectionStringDialog.razor b/src/AzureIoTHub.Portal.Client/Pages/Devices/ConnectionStringDialog.razor
index 97b90151a..bf944f6c1 100644
--- a/src/AzureIoTHub.Portal.Client/Pages/Devices/ConnectionStringDialog.razor
+++ b/src/AzureIoTHub.Portal.Client/Pages/Devices/ConnectionStringDialog.razor
@@ -41,7 +41,7 @@
     
     [CascadingParameter] MudDialogInstance MudDialog { get; set; } = default!;
     [Parameter] public string deviceId { get; set; } = default!;
-    private EnrollmentCredentials credentials = new();
+    private SymmetricCredentials credentials = new();
 
     protected override async Task OnInitializedAsync()
     {
diff --git a/src/AzureIoTHub.Portal.Client/Pages/EdgeDevices/ConnectionStringDialog.razor b/src/AzureIoTHub.Portal.Client/Pages/EdgeDevices/ConnectionStringDialog.razor
index 2277991f0..dc3e2b363 100644
--- a/src/AzureIoTHub.Portal.Client/Pages/EdgeDevices/ConnectionStringDialog.razor
+++ b/src/AzureIoTHub.Portal.Client/Pages/EdgeDevices/ConnectionStringDialog.razor
@@ -1,47 +1,86 @@
 @using AzureIoTHub.Portal.Models.v10
+@using AzureIoTHub.Portal.Shared.Constants;
 
 @inject ClipboardService ClipboardService
 @inject IEdgeDeviceClientService EdgeDeviceClientService
+@inject PortalSettings Portal
 
 <MudDialog>
-        <DialogContent>
-            <MudCard Outlined="true">
-                <MudCardContent>
-                    <MudGrid>
+    <DialogContent>
+        <MudCard Outlined="true">
+            <MudCardContent>
+                <MudGrid>
+                    @if (Portal.CloudProvider.Equals(CloudProviders.Azure))
+                    {
                         <MudItem xs="12">
                             <MudText Style="text-decoration:underline"><b>Service Endpoint</b></MudText>
-                            <MudTextField @bind-Value="@Credentials.ProvisioningEndpoint" Class="mt-0" Variant="Variant.Text" Margin="Margin.Dense" ReadOnly="true"  Adornment="Adornment.End" AdornmentIcon="@Icons.Material.Filled.ContentCopy" OnAdornmentClick="@(() => ClipboardService.WriteTextAsync(Credentials.ProvisioningEndpoint))"/>
+                            <MudTextField @bind-Value="@Credentials.ProvisioningEndpoint" Class="mt-0" Variant="Variant.Text" Margin="Margin.Dense" ReadOnly="true" Adornment="Adornment.End" AdornmentIcon="@Icons.Material.Filled.ContentCopy" OnAdornmentClick="@(() => ClipboardService.WriteTextAsync(Credentials.ProvisioningEndpoint))" />
                         </MudItem>
                         <MudItem Class="mt-0" xs="12">
                             <MudText Style="text-decoration:underline"><b>Registration Id</b></MudText>
-                            <MudTextField @bind-Value="@Credentials.RegistrationID" Class="mt-0" Variant="Variant.Text" Margin="Margin.Dense" ReadOnly="true"  Adornment="Adornment.End" AdornmentIcon="@Icons.Material.Filled.ContentCopy" OnAdornmentClick="@(() => ClipboardService.WriteTextAsync(Credentials.RegistrationID))" />
+                            <MudTextField @bind-Value="@Credentials.RegistrationID" Class="mt-0" Variant="Variant.Text" Margin="Margin.Dense" ReadOnly="true" Adornment="Adornment.End" AdornmentIcon="@Icons.Material.Filled.ContentCopy" OnAdornmentClick="@(() => ClipboardService.WriteTextAsync(Credentials.RegistrationID))" />
                         </MudItem>
                         <MudItem Class="mt-0" xs="12">
                             <MudText Style="text-decoration:underline"><b>Scope Id</b></MudText>
-                            <MudTextField @bind-Value="@Credentials.ScopeID" Class="mt-0" Variant="Variant.Text" Margin="Margin.Dense" ReadOnly="true"  Adornment="Adornment.End" AdornmentIcon="@Icons.Material.Filled.ContentCopy" OnAdornmentClick="@(() => ClipboardService.WriteTextAsync(Credentials.ScopeID))" />
+                            <MudTextField @bind-Value="@Credentials.ScopeID" Class="mt-0" Variant="Variant.Text" Margin="Margin.Dense" ReadOnly="true" Adornment="Adornment.End" AdornmentIcon="@Icons.Material.Filled.ContentCopy" OnAdornmentClick="@(() => ClipboardService.WriteTextAsync(Credentials.ScopeID))" />
                         </MudItem>
                         <MudItem Class="mt-0" xs="12">
                             <MudText Style="text-decoration:underline"><b>Symmetric Key</b></MudText>
                             <MudTextField @bind-Value="@Credentials.SymmetricKey" Variant="Variant.Text" InputType="InputType.Password" Margin="Margin.Dense" ReadOnly="true" Adornment="Adornment.End" AdornmentIcon="@Icons.Material.Filled.ContentCopy" OnAdornmentClick="@(() => ClipboardService.WriteTextAsync(Credentials.SymmetricKey))" />
                         </MudItem>
-                    </MudGrid>
-                </MudCardContent>
-            </MudCard>
-        </DialogContent>
-        <DialogActions>
-            <MudButton id="cancel" OnClick="Cancel">Cancel</MudButton>
-        </DialogActions>
-    </MudDialog>
+                    }
+                    else if (Portal.CloudProvider.Equals(CloudProviders.AWS))
+                    {
+                        <MudItem xs="12">
+                            @if (string.IsNullOrEmpty(EnrollementScriptCommand))
+                            {
+                                <MudText>Quick connect</MudText>
+                                <br />
+                                <MudAlert Severity="Severity.Normal">
+                                    Quiclky connect your Edge device on the platform by executing one command.
+                                </MudAlert>
+                                <br />
+                                <MudButton Variant="Variant.Outlined" Color="Color.Primary" Style="margin:0.5em;display: block; margin-left: auto; margin-right: auto" OnClick="GetEnrollmentScriptCommand">Get the magic command</MudButton>
+                            }
+                            else
+                            {
+                                <br />
+                                <MudText Style="text-decoration:underline"><b>Operating system</b></MudText>
+                                <MudSelect T="string" @bind-Value="@templateName" Text="Operating system" SelectedValuesChanged="GetEnrollmentScriptCommand">
+                                    <MudSelectItem  Value="@("debian_11_bullseye")">Debian 11 (Bulleseye)</MudSelectItem>
+                                </MudSelect>
+                                <br />
+                                <MudAlert Severity="Severity.Info">
+                                    Copy this command line above and paste it into the device prompt.<br />
+                                    <b>Note that you should have administrative rights on the device to execute the command.</b>
+                                </MudAlert>
+                                <br />
+                                <MudTextField @bind-Value="@EnrollementScriptCommand" Style="text-overflow: ellipsis" Class="mt-0" Variant="Variant.Text" Margin="Margin.Dense" ReadOnly="true" Adornment="Adornment.End" AdornmentIcon="@Icons.Material.Filled.ContentCopy" OnAdornmentClick="@(() => ClipboardService.WriteTextAsync(EnrollementScriptCommand))" />
+                            }
+                        </MudItem>
+                    }
+                </MudGrid>
+            </MudCardContent>
+        </MudCard>
+    </DialogContent>
+    <DialogActions>
+        <MudButton id="ok" OnClick="Close">OK</MudButton>
+    </DialogActions>
+</MudDialog>
 
 @code {
     [CascadingParameter]
     public Error Error { get; set; } = default!;
-    
+
     [CascadingParameter] MudDialogInstance MudDialog { get; set; } = default!;
 
     [Parameter] public string deviceId { get; set; } = default!;
 
-    private EnrollmentCredentials Credentials = new EnrollmentCredentials();
+    private SymmetricCredentials Credentials = new SymmetricCredentials();
+
+    public string EnrollementScriptCommand { get; set; } = default!;
+
+    public string templateName { get; set; } = "debian_11_bullseye";
 
     protected override async Task OnInitializedAsync()
     {
@@ -53,10 +92,16 @@
         catch (ProblemDetailsException exception)
         {
             Error?.ProcessProblemDetails(exception);
-            Cancel();
+            Close();
         }
     }
 
+    private async Task GetEnrollmentScriptCommand()
+    {
+        var url = await EdgeDeviceClientService.GetEnrollmentScriptUrl(deviceId, templateName);
+
+        EnrollementScriptCommand = $"curl -s {url} | bash";
+    }
 
-    void Cancel() => MudDialog.Cancel();
+    void Close() => MudDialog.Cancel();
 }
diff --git a/src/AzureIoTHub.Portal.Client/Pages/EdgeDevices/CreateEdgeDevicePage.razor b/src/AzureIoTHub.Portal.Client/Pages/EdgeDevices/CreateEdgeDevicePage.razor
index 8f5d56556..eaab7cea3 100644
--- a/src/AzureIoTHub.Portal.Client/Pages/EdgeDevices/CreateEdgeDevicePage.razor
+++ b/src/AzureIoTHub.Portal.Client/Pages/EdgeDevices/CreateEdgeDevicePage.razor
@@ -7,6 +7,7 @@
 @attribute [Authorize]
 @inject PortalSettings Portal
 @inject ISnackbar Snackbar
+@inject PortalSettings Portal
 @inject NavigationManager NavigationManager
 @inject IEdgeDeviceClientService EdgeDeviceClientService
 @inject IEdgeModelClientService EdgeModelClientService
@@ -20,9 +21,10 @@
     <MudGrid>
         <MudItem xs="12" sm="4" md="3">
             <MudCard>
-                <MudCardHeader>
+                <MudCardHeader Class="DeviceCardHeader">
                     <CardHeaderContent>
-                        <MudText Typo="Typo.h5" Align="Align.Center">@(string.IsNullOrEmpty(EdgeDevice.DeviceName) ? EdgeDevice.DeviceId : EdgeDevice.DeviceName)</MudText>
+                        <MudText Typo="Typo.body2" Class="mb-6" id=@nameof(IoTEdgeModel.Name)>Model: <b>@edgeModel?.Name</b></MudText>
+                        <MudText Typo="Typo.h5" Class="overflow-ellipsis" Align="Align.Center">@(string.IsNullOrEmpty(EdgeDevice?.DeviceName) ? EdgeDevice?.DeviceId : EdgeDevice?.DeviceName)</MudText>
                         </CardHeaderContent>
                     </MudCardHeader>
                     <MudCardContent>
@@ -90,12 +92,16 @@
 
                                             </MudItem>
                                             <MudItem xs="12" md="6">
-                                                <MudTextField @bind-Value="@EdgeDevice.DeviceId"
-                                                              id=@nameof(IoTEdgeDevice.DeviceId)
-                                                              Label="Device ID"
-                                                              Variant="Variant.Outlined"
-                                                              For="@(()=> EdgeDevice.DeviceId)"
-                                                              HelperText="The device identifier should be of ASCII 7-bit alphanumeric characters plus certain special characters" />
+                                                @if (Portal.CloudProvider.Equals(CloudProviders.Azure))
+                                                {
+                                                    <MudTextField @bind-Value="@EdgeDevice.DeviceId"
+                                                                  id=@nameof(IoTEdgeDevice.DeviceId)
+                                                                  Label="Device ID"
+                                                                  Variant="Variant.Outlined"
+                                                                  For="@(()=> EdgeDevice.DeviceId)"
+                                                                  HelperText="The device identifier should be of ASCII 7-bit alphanumeric characters plus certain special characters" />
+
+                                                }
                                             </MudItem>
                                             <MudItem xs="12">
                                                 <MudSwitch @bind-Checked="@duplicateDevice" Label="Or select a device to copy" />
diff --git a/src/AzureIoTHub.Portal.Client/Pages/EdgeDevices/EdgeDeviceDetailPage.razor b/src/AzureIoTHub.Portal.Client/Pages/EdgeDevices/EdgeDeviceDetailPage.razor
index 6654e0c6a..64f43ab4b 100644
--- a/src/AzureIoTHub.Portal.Client/Pages/EdgeDevices/EdgeDeviceDetailPage.razor
+++ b/src/AzureIoTHub.Portal.Client/Pages/EdgeDevices/EdgeDeviceDetailPage.razor
@@ -397,7 +397,7 @@
     {
         var parameters = new DialogParameters { { nameof(ConnectionStringDialog.deviceId), this.deviceId } };
 
-        _ = await DialogService.Show<ConnectionStringDialog>("Edge Device Connection String", parameters).Result;
+        _ =  await DialogService.Show<ConnectionStringDialog>("Connect Edge device", parameters).Result;
     }
 
     public async Task ShowDeleteModal()
diff --git a/src/AzureIoTHub.Portal.Client/Services/DeviceClientService.cs b/src/AzureIoTHub.Portal.Client/Services/DeviceClientService.cs
index ccbe717c7..3643232d7 100644
--- a/src/AzureIoTHub.Portal.Client/Services/DeviceClientService.cs
+++ b/src/AzureIoTHub.Portal.Client/Services/DeviceClientService.cs
@@ -60,9 +60,9 @@ public Task SetDeviceProperties(string deviceId, IList<DevicePropertyValue> devi
             return this.http.PostAsJsonAsync($"api/devices/{deviceId}/properties", deviceProperties);
         }
 
-        public Task<EnrollmentCredentials> GetEnrollmentCredentials(string deviceId)
+        public Task<SymmetricCredentials> GetEnrollmentCredentials(string deviceId)
         {
-            return this.http.GetFromJsonAsync<EnrollmentCredentials>($"api/devices/{deviceId}/credentials")!;
+            return this.http.GetFromJsonAsync<SymmetricCredentials>($"api/devices/{deviceId}/credentials")!;
         }
 
         public Task DeleteDevice(string deviceId)
diff --git a/src/AzureIoTHub.Portal.Client/Services/EdgeDeviceClientService.cs b/src/AzureIoTHub.Portal.Client/Services/EdgeDeviceClientService.cs
index 36312cf7b..8fd6146f7 100644
--- a/src/AzureIoTHub.Portal.Client/Services/EdgeDeviceClientService.cs
+++ b/src/AzureIoTHub.Portal.Client/Services/EdgeDeviceClientService.cs
@@ -44,9 +44,14 @@ public Task DeleteDevice(string deviceId)
             return this.http.DeleteAsync($"api/edge/devices/{deviceId}");
         }
 
-        public Task<EnrollmentCredentials> GetEnrollmentCredentials(string deviceId)
+        public Task<SymmetricCredentials> GetEnrollmentCredentials(string deviceId)
         {
-            return this.http.GetFromJsonAsync<EnrollmentCredentials>($"api/edge/devices/{deviceId}/credentials")!;
+            return this.http.GetFromJsonAsync<SymmetricCredentials>($"api/edge/devices/{deviceId}/credentials")!;
+        }
+
+        public Task<string> GetEnrollmentScriptUrl(string deviceId, string templateName)
+        {
+            return this.http.GetStringAsync($"api/edge/devices/{deviceId}/enrollementScript/{templateName}")!;
         }
 
         public async Task<List<IoTEdgeDeviceLog>> GetEdgeDeviceLogs(string deviceId, IoTEdgeModule edgeModule)
diff --git a/src/AzureIoTHub.Portal.Client/Services/IDeviceClientService.cs b/src/AzureIoTHub.Portal.Client/Services/IDeviceClientService.cs
index 3a6f995ed..33ea49404 100644
--- a/src/AzureIoTHub.Portal.Client/Services/IDeviceClientService.cs
+++ b/src/AzureIoTHub.Portal.Client/Services/IDeviceClientService.cs
@@ -23,7 +23,7 @@ public interface IDeviceClientService
 
         Task SetDeviceProperties(string deviceId, IList<DevicePropertyValue> deviceProperties);
 
-        Task<EnrollmentCredentials> GetEnrollmentCredentials(string deviceId);
+        Task<SymmetricCredentials> GetEnrollmentCredentials(string deviceId);
 
         Task DeleteDevice(string deviceId);
 
diff --git a/src/AzureIoTHub.Portal.Client/Services/IEdgeDeviceClientService.cs b/src/AzureIoTHub.Portal.Client/Services/IEdgeDeviceClientService.cs
index 804edf522..8167a37dd 100644
--- a/src/AzureIoTHub.Portal.Client/Services/IEdgeDeviceClientService.cs
+++ b/src/AzureIoTHub.Portal.Client/Services/IEdgeDeviceClientService.cs
@@ -20,7 +20,9 @@ public interface IEdgeDeviceClientService
 
         Task DeleteDevice(string deviceId);
 
-        Task<EnrollmentCredentials> GetEnrollmentCredentials(string deviceId);
+        Task<SymmetricCredentials> GetEnrollmentCredentials(string deviceId);
+
+        Task<string> GetEnrollmentScriptUrl(string deviceId, string templateName);
 
         Task<List<IoTEdgeDeviceLog>> GetEdgeDeviceLogs(string deviceId, IoTEdgeModule edgeModule);
 
diff --git a/src/AzureIoTHub.Portal.Infrastructure/AzureIoTHub.Portal.Infrastructure.csproj b/src/AzureIoTHub.Portal.Infrastructure/AzureIoTHub.Portal.Infrastructure.csproj
index d73ae7985..108f0ade3 100644
--- a/src/AzureIoTHub.Portal.Infrastructure/AzureIoTHub.Portal.Infrastructure.csproj
+++ b/src/AzureIoTHub.Portal.Infrastructure/AzureIoTHub.Portal.Infrastructure.csproj
@@ -1,11 +1,9 @@
 <Project Sdk="Microsoft.NET.Sdk">
-
   <PropertyGroup>
     <TargetFramework>net7.0</TargetFramework>
     <ImplicitUsings>enable</ImplicitUsings>
     <Nullable>enable</Nullable>
   </PropertyGroup>
-
   <ItemGroup>
     <None Remove="Resources\default-template-icon.png" />
     <None Remove="RouterConfigFiles\AS_923_925_1.json" />
@@ -31,7 +29,6 @@
     <None Remove="RouterConfigFiles\US_902_928_FSB_7.json" />
     <None Remove="RouterConfigFiles\US_902_928_FSB_8.json" />
   </ItemGroup>
-
   <ItemGroup>
     <Content Include="RouterConfigFiles\AS_923_925_1.json">
       <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
@@ -89,8 +86,8 @@
       <CopyToPublishDirectory>PreserveNewest</CopyToPublishDirectory>
     </Content>
   </ItemGroup>
-
   <ItemGroup>
+    <EmbeddedResource Include="EdgeEnrollementScripts\AWS\debian_11_bullseye" />
     <EmbeddedResource Include="Resources\default-template-icon.png" />
     <EmbeddedResource Include="RouterConfigFiles\CN_470_510_RP1.json" />
     <EmbeddedResource Include="RouterConfigFiles\CN_470_510_RP2.json" />
@@ -104,7 +101,6 @@
     <EmbeddedResource Include="RouterConfigFiles\US_902_928_FSB_7.json" />
     <EmbeddedResource Include="RouterConfigFiles\US_902_928_FSB_8.json" />
   </ItemGroup>
-
   <ItemGroup>
     <PackageReference Include="AWSSDK.GreengrassV2" Version="3.7.103.20" />
     <PackageReference Include="AWSSDK.IoT" Version="3.7.107.5" />
@@ -116,6 +112,7 @@
     <PackageReference Include="Azure.Messaging.EventHubs.Processor" Version="5.9.2" />
     <PackageReference Include="Azure.Storage.Blobs" Version="12.16.0" />
     <PackageReference Include="CsvHelper" Version="30.0.1" />
+    <PackageReference Include="Microsoft.AspNetCore.DataProtection.EntityFrameworkCore" Version="7.0.5" />
     <PackageReference Include="Microsoft.AspNetCore.Hosting" Version="2.2.7" />
     <PackageReference Include="Microsoft.AspNetCore.Hosting.Abstractions" Version="2.2.0" />
     <PackageReference Include="Microsoft.AspNetCore.Hosting.Server.Abstractions" Version="2.2.0" />
@@ -147,14 +144,10 @@
     <PackageReference Include="SixLabors.ImageSharp" Version="3.0.1" />
     <PackageReference Include="System.Linq.Dynamic.Core" Version="1.3.1" />
     <PackageReference Include="EntityFrameworkCore.Exceptions.PostgreSQL" Version="6.0.3" />
-
   </ItemGroup>
-  
   <ItemGroup>
     <ProjectReference Include="..\AzureIoTHub.Portal.Application\AzureIoTHub.Portal.Application.csproj" />
     <ProjectReference Include="..\AzureIoTHub.Portal.Crosscutting\AzureIoTHub.Portal.Crosscutting.csproj" />
     <ProjectReference Include="..\AzureIoTHub.Portal.Domain\AzureIoTHub.Portal.Domain.csproj" />
-    
   </ItemGroup>
-
 </Project>
\ No newline at end of file
diff --git a/src/AzureIoTHub.Portal.Infrastructure/EdgeEnrollementScripts/AWS/debian_11_bullseye b/src/AzureIoTHub.Portal.Infrastructure/EdgeEnrollementScripts/AWS/debian_11_bullseye
new file mode 100644
index 000000000..281dc0a44
--- /dev/null
+++ b/src/AzureIoTHub.Portal.Infrastructure/EdgeEnrollementScripts/AWS/debian_11_bullseye
@@ -0,0 +1,57 @@
+#!/bin/sh
+
+## Install all dthe dependencies
+apt-get update && \
+  apt install -y systemd default-jdk unzip curl sudo
+
+## Create the greengrass configuration
+mkdir -p /etc/greengrass/certs /etc/greengrass/config
+useradd --system --create-home ggc_user
+groupadd --system ggc_group
+
+cat > /etc/greengrass/certs/device.pem.crt << EOF
+%CERTIFICATE%
+EOF
+
+cat > /etc/greengrass/certs/private.pem.key << EOF
+%PRIVATE_KEY%
+EOF
+
+curl -o /etc/greengrass/certs/AmazonRootCA1.pem https://www.amazontrust.com/repository/AmazonRootCA1.pem
+
+cat > /etc/greengrass/config/config.yaml << EOF
+---
+system:
+  certificateFilePath: "/etc/greengrass/certs/device.pem.crt"
+  privateKeyPath: "/etc/greengrass/certs/private.pem.key"
+  rootCaPath: "/etc/greengrass/certs/AmazonRootCA1.pem"
+  rootpath: "/greengrass/v2"
+  thingName: "%THING_NAME%"
+services:
+  aws.greengrass.Nucleus:
+    componentType: "NUCLEUS"
+    version: "nucleus-version"
+    configuration:
+      awsRegion: "%REGION%"
+      iotRoleAlias: "GreengrassCoreTokenExchangeRoleAlias"
+      iotDataEndpoint: "%DATA_ENDPOINT%"
+      iotCredEndpoint: "%CREDENTIALS_ENDPOINT%"
+EOF
+
+chown -R ggc_user:ggc_group /etc/greengrass 
+chmod 640 /etc/greengrass/ -R
+
+## Download the AWS IoT Greengrass Core software
+curl -s https://d2s8p88vqu9w66.cloudfront.net/releases/greengrass-nucleus-latest.zip > greengrass-nucleus-latest.zip
+jarsigner -verify -certs -verbose greengrass-nucleus-latest.zip
+unzip greengrass-nucleus-latest.zip -d GreengrassInstaller && rm greengrass-nucleus-latest.zip
+
+## Install the AWS IoT Greengrass Core software 
+java -Droot="/greengrass/v2" -Dlog.store=FILE \
+  -jar ./GreengrassInstaller/lib/Greengrass.jar \
+  --init-config /etc/greengrass/config/config.yaml \
+  --component-default-user ggc_user:ggc_group \
+  --setup-system-service true
+
+## Remove the installer directory
+rm -rf ./GreengrassInstaller
\ No newline at end of file
diff --git a/src/AzureIoTHub.Portal.Infrastructure/Helpers/EdgeEnrollementHelper.cs b/src/AzureIoTHub.Portal.Infrastructure/Helpers/EdgeEnrollementHelper.cs
new file mode 100644
index 000000000..c72f3961f
--- /dev/null
+++ b/src/AzureIoTHub.Portal.Infrastructure/Helpers/EdgeEnrollementHelper.cs
@@ -0,0 +1,24 @@
+// Copyright (c) CGI France. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+namespace AzureIoTHub.Portal.Infrastructure.Helpers
+{
+    using System.Reflection;
+
+    public class EdgeEnrollementHelper : IEdgeEnrollementHelper
+    {
+        public string? GetEdgeEnrollementTemplate(string templateName)
+        {
+            var currentAssembly = Assembly.GetExecutingAssembly();
+
+            using var resourceStream = currentAssembly.GetManifestResourceStream($"{currentAssembly.GetName().Name}.EdgeEnrollementScripts.{templateName}");
+
+            if (resourceStream == null)
+                return null;
+
+            using var streamReader = new StreamReader(resourceStream);
+
+            return streamReader.ReadToEnd();
+        }
+    }
+}
diff --git a/src/AzureIoTHub.Portal.Infrastructure/Helpers/IEdgeEnrollementHelper.cs b/src/AzureIoTHub.Portal.Infrastructure/Helpers/IEdgeEnrollementHelper.cs
new file mode 100644
index 000000000..ce69fbd61
--- /dev/null
+++ b/src/AzureIoTHub.Portal.Infrastructure/Helpers/IEdgeEnrollementHelper.cs
@@ -0,0 +1,10 @@
+// Copyright (c) CGI France. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+namespace AzureIoTHub.Portal.Infrastructure.Helpers
+{
+    public interface IEdgeEnrollementHelper
+    {
+        string GetEdgeEnrollementTemplate(string templateName);
+    }
+}
diff --git a/src/AzureIoTHub.Portal.Infrastructure/PortalDbContext.cs b/src/AzureIoTHub.Portal.Infrastructure/PortalDbContext.cs
index 2cd8457bb..f7eb30676 100644
--- a/src/AzureIoTHub.Portal.Infrastructure/PortalDbContext.cs
+++ b/src/AzureIoTHub.Portal.Infrastructure/PortalDbContext.cs
@@ -4,10 +4,11 @@
 namespace AzureIoTHub.Portal.Infrastructure
 {
     using Domain.Entities;
+    using Microsoft.AspNetCore.DataProtection.EntityFrameworkCore;
     using Microsoft.EntityFrameworkCore;
     using Newtonsoft.Json;
 
-    public class PortalDbContext : DbContext
+    public class PortalDbContext : DbContext, IDataProtectionKeyContext
     {
         public DbSet<DeviceModelProperty> DeviceModelProperties { get; set; }
         public DbSet<DeviceTag> DeviceTags { get; set; }
@@ -22,11 +23,12 @@ public class PortalDbContext : DbContext
         public DbSet<Concentrator> Concentrators { get; set; }
         public DbSet<LoRaDeviceTelemetry> LoRaDeviceTelemetry { get; set; }
         public DbSet<Label> Labels { get; set; }
+        public DbSet<DataProtectionKey> DataProtectionKeys { get; set; }
 
 #pragma warning disable CS8618 // Non-nullable field must contain a non-null value when exiting constructor. Consider declaring as nullable.
         public PortalDbContext(DbContextOptions<PortalDbContext> options)
 #pragma warning restore CS8618 // Non-nullable field must contain a non-null value when exiting constructor. Consider declaring as nullable.
-            : base(options)
+                : base(options)
         {
         }
 
diff --git a/src/AzureIoTHub.Portal.Infrastructure/Providers/AzureDeviceRegistryProvider.cs b/src/AzureIoTHub.Portal.Infrastructure/Providers/AzureDeviceRegistryProvider.cs
index 144b71368..cfe5ac874 100644
--- a/src/AzureIoTHub.Portal.Infrastructure/Providers/AzureDeviceRegistryProvider.cs
+++ b/src/AzureIoTHub.Portal.Infrastructure/Providers/AzureDeviceRegistryProvider.cs
@@ -13,6 +13,7 @@ namespace AzureIoTHub.Portal.Infrastructure.Providers
     using AzureIoTHub.Portal.Models.v10;
     using Microsoft.Azure.Devices.Provisioning.Service;
     using Microsoft.Azure.Devices.Shared;
+    using Shared.Models.v10;
 
     internal class AzureDeviceRegistryProvider : IDeviceRegistryProvider
     {
@@ -110,7 +111,7 @@ public async Task<Attestation> GetAttestation(string deviceType)
             return attetationMechanism.GetAttestation();
         }
 
-        public async Task<EnrollmentCredentials> GetEnrollmentCredentialsAsync(string deviceId, string modelId)
+        public async Task<DeviceCredentials> GetEnrollmentCredentialsAsync(string deviceId, string modelId)
         {
             Attestation attestation;
 
@@ -133,12 +134,16 @@ public async Task<EnrollmentCredentials> GetEnrollmentCredentialsAsync(string de
 
             var symmetricKey = DeviceHelper.RetrieveSymmetricKey(deviceId, CheckAttestation(attestation));
 
-            return new EnrollmentCredentials
+            return new DeviceCredentials
             {
-                SymmetricKey = symmetricKey,
-                RegistrationID = deviceId,
-                ScopeID = this.config.DPSScopeID,
-                ProvisioningEndpoint = $"https://{this.config.DPSEndpoint}"
+                AuthenticationMode = AuthenticationMode.SymmetricKey,
+                SymmetricCredentials = new SymmetricCredentials
+                {
+                    SymmetricKey = symmetricKey,
+                    RegistrationID = deviceId,
+                    ScopeID = this.config.DPSScopeID,
+                    ProvisioningEndpoint = $"https://{this.config.DPSEndpoint}"
+                }
             };
         }
 
diff --git a/src/AzureIoTHub.Portal.Infrastructure/Services/AWS/AWSDeviceService.cs b/src/AzureIoTHub.Portal.Infrastructure/Services/AWS/AWSDeviceService.cs
index 24261d205..aff3a912a 100644
--- a/src/AzureIoTHub.Portal.Infrastructure/Services/AWS/AWSDeviceService.cs
+++ b/src/AzureIoTHub.Portal.Infrastructure/Services/AWS/AWSDeviceService.cs
@@ -19,7 +19,6 @@ namespace AzureIoTHub.Portal.Infrastructure.Services.AWS
     public class AWSDeviceService : DeviceService
     {
         private readonly IMapper mapper;
-        private readonly IUnitOfWork unitOfWork;
         private readonly IDeviceRepository deviceRepository;
         private readonly IAWSExternalDeviceService externalDevicesService;
 
@@ -32,11 +31,11 @@ public AWSDeviceService(PortalDbContext portalDbContext,
             IDeviceTagService deviceTagService,
             IDeviceModelImageManager deviceModelImageManager,
             IAWSExternalDeviceService externalDevicesService,
+            IExternalDeviceService externalDeviceService,
             ILogger<AWSDeviceService> logger)
-            : base(mapper, unitOfWork, deviceRepository, deviceTagValueRepository, labelRepository, null!, deviceTagService, deviceModelImageManager, null!, portalDbContext, logger)
+            : base(mapper, unitOfWork, deviceRepository, deviceTagValueRepository, labelRepository, externalDeviceService, deviceTagService, deviceModelImageManager, null!, portalDbContext, logger)
         {
             this.mapper = mapper;
-            this.unitOfWork = unitOfWork;
             this.deviceRepository = deviceRepository;
             this.externalDevicesService = externalDevicesService;
         }
diff --git a/src/AzureIoTHub.Portal.Infrastructure/Services/AWS/AWSExternalDeviceService.cs b/src/AzureIoTHub.Portal.Infrastructure/Services/AWS/AWSExternalDeviceService.cs
index d13fcae3f..d8fee03e3 100644
--- a/src/AzureIoTHub.Portal.Infrastructure/Services/AWS/AWSExternalDeviceService.cs
+++ b/src/AzureIoTHub.Portal.Infrastructure/Services/AWS/AWSExternalDeviceService.cs
@@ -10,19 +10,14 @@ namespace AzureIoTHub.Portal.Infrastructure.Services.AWS
     using Amazon.IotData.Model;
     using AzureIoTHub.Portal.Application.Services.AWS;
     using AzureIoTHub.Portal.Domain.Exceptions;
-    using Microsoft.Extensions.Logging;
 
     public class AWSExternalDeviceService : IAWSExternalDeviceService
     {
-        private readonly ILogger<AWSExternalDeviceService> log;
         private readonly IAmazonIoT amazonIotClient;
         private readonly IAmazonIotData amazonIotDataClient;
 
-        public AWSExternalDeviceService(ILogger<AWSExternalDeviceService> log
-            , IAmazonIoT amazonIoTClient
-            , IAmazonIotData amazonIotDataClient)
+        public AWSExternalDeviceService(IAmazonIoT amazonIoTClient, IAmazonIotData amazonIotDataClient)
         {
-            this.log = log;
             this.amazonIotClient = amazonIoTClient;
             this.amazonIotDataClient = amazonIotDataClient;
         }
diff --git a/src/AzureIoTHub.Portal.Infrastructure/Services/AwsExternalDeviceService.cs b/src/AzureIoTHub.Portal.Infrastructure/Services/AwsExternalDeviceService.cs
index e970e658a..4b05f7ed6 100644
--- a/src/AzureIoTHub.Portal.Infrastructure/Services/AwsExternalDeviceService.cs
+++ b/src/AzureIoTHub.Portal.Infrastructure/Services/AwsExternalDeviceService.cs
@@ -4,29 +4,52 @@
 namespace AzureIoTHub.Portal.Infrastructure.Services
 {
     using System.Collections.Generic;
+    using System.Text.RegularExpressions;
     using System.Threading.Tasks;
+    using Amazon.GreengrassV2;
+    using Amazon.GreengrassV2.Model;
     using Amazon.IoT;
     using Amazon.IoT.Model;
+    using Amazon.SecretsManager;
+    using Amazon.SecretsManager.Model;
     using AutoMapper;
     using AzureIoTHub.Portal;
     using AzureIoTHub.Portal.Application.Services;
+    using AzureIoTHub.Portal.Domain;
     using AzureIoTHub.Portal.Domain.Shared;
     using AzureIoTHub.Portal.Models.v10;
     using Microsoft.Azure.Devices;
     using Microsoft.Azure.Devices.Shared;
+    using Shared.Models.v10;
     using ResourceAlreadyExistsException = Amazon.IoT.Model.ResourceAlreadyExistsException;
     using ResourceNotFoundException = Amazon.IoT.Model.ResourceNotFoundException;
+    using Tag = Amazon.IoT.Model.Tag;
 
     public class AwsExternalDeviceService : IExternalDeviceService
     {
+        private const string PrivateKeyKey = "_private-key";
+        private const string PublicKeyKey = "_public-key";
+        private const string CertificateKey = "_certificate";
+
+        private readonly ConfigHandler configHandler;
         private readonly IMapper mapper;
         private readonly IAmazonIoT amazonIoTClient;
+        private readonly IAmazonGreengrassV2 greengrass;
+        private readonly IAmazonSecretsManager amazonSecretsManager;
+
 
-        public AwsExternalDeviceService(IMapper mapper,
-            IAmazonIoT amazonIoTClient)
+        public AwsExternalDeviceService(
+            ConfigHandler configHandler,
+            IMapper mapper,
+            IAmazonIoT amazonIoTClient,
+            IAmazonGreengrassV2 greengrass,
+            IAmazonSecretsManager amazonSecretsManager)
         {
+            this.configHandler = configHandler;
             this.mapper = mapper;
             this.amazonIoTClient = amazonIoTClient;
+            this.greengrass = greengrass;
+            this.amazonSecretsManager = amazonSecretsManager;
         }
 
         public async Task<ExternalDeviceModelDto> CreateDeviceModel(ExternalDeviceModelDto deviceModel)
@@ -54,19 +77,30 @@ public async Task<ExternalDeviceModelDto> CreateDeviceModel(ExternalDeviceModelD
             }
         }
 
-        public Task<BulkRegistryOperationResult> CreateDeviceWithTwin(string deviceId, bool isEdge, Twin twin, DeviceStatus isEnabled)
-        {
-            throw new NotImplementedException();
-        }
-
         public Task<Twin> CreateNewTwinFromDeviceId(string deviceId)
         {
             throw new NotImplementedException();
         }
 
-        public Task DeleteDevice(string deviceId)
+        public async Task DeleteDevice(string deviceId)
         {
-            throw new NotImplementedException();
+            try
+            {
+                _ = await this.greengrass.DeleteCoreDeviceAsync(new DeleteCoreDeviceRequest
+                {
+                    CoreDeviceThingName = deviceId,
+                });
+            }
+            catch (Amazon.GreengrassV2.Model.ResourceNotFoundException) { }
+
+            try
+            {
+                _ = await this.amazonIoTClient.DeleteThingAsync(new DeleteThingRequest
+                {
+                    ThingName = deviceId
+                });
+            }
+            catch (Amazon.IoT.Model.ResourceNotFoundException) { }
         }
 
         public async Task DeleteDeviceModel(ExternalDeviceModelDto deviceModel)
@@ -162,9 +196,34 @@ public Task<Twin> GetDeviceTwinWithModule(string deviceId)
             throw new NotImplementedException();
         }
 
-        public Task<EnrollmentCredentials> GetEdgeDeviceCredentials(string edgeDeviceId)
+        public async Task<DeviceCredentials> GetEdgeDeviceCredentials(IoTEdgeDevice device)
         {
-            throw new NotImplementedException();
+            DeviceCredentials deviceCredentials;
+
+            try
+            {
+                deviceCredentials = await GetDeviceCredentialsFromSecretsManager(device.DeviceName);
+            }
+            catch (Amazon.SecretsManager.Model.ResourceNotFoundException)
+            {
+                var createCertificateTuple = await GenerateCertificate(device.DeviceName);
+
+                _ = await this.amazonIoTClient.AttachPolicyAsync(new AttachPolicyRequest
+                {
+                    PolicyName = "GreengrassV2IoTThingPolicy",
+                    Target = createCertificateTuple.Item2
+                });
+
+                _ = await this.amazonIoTClient.AttachPolicyAsync(new AttachPolicyRequest
+                {
+                    PolicyName = "GreengrassCoreTokenExchangeRoleAliasPolicy",
+                    Target = createCertificateTuple.Item2
+                });
+
+                return createCertificateTuple.Item1;
+            }
+
+            return deviceCredentials;
         }
 
         public Task<IEnumerable<IoTEdgeDeviceLog>> GetEdgeDeviceLogs(string deviceId, IoTEdgeModule edgeModule)
@@ -177,9 +236,18 @@ public Task<int> GetEdgeDevicesCount()
             throw new NotImplementedException();
         }
 
-        public Task<EnrollmentCredentials> GetEnrollmentCredentials(string deviceId)
+        public async Task<DeviceCredentials> GetDeviceCredentials(string deviceId)
         {
-            throw new NotImplementedException();
+            try
+            {
+                return await GetDeviceCredentialsFromSecretsManager(deviceId);
+            }
+            catch (Amazon.SecretsManager.Model.ResourceNotFoundException)
+            {
+                var deviceCredentialsTuple = await GenerateCertificate(deviceId);
+
+                return deviceCredentialsTuple.Item1;
+            }
         }
 
         public Task<ConfigItem> RetrieveLastConfiguration(Twin twin)
@@ -217,5 +285,193 @@ private async Task CreateDynamicGroupForThingType(string thingTypeName)
                 });
             }
         }
+
+        private async Task<Tuple<DeviceCredentials, string>> GenerateCertificate(string deviceId)
+        {
+            var response = await this.amazonIoTClient.CreateKeysAndCertificateAsync(true);
+
+            _ = await this.amazonIoTClient.AttachThingPrincipalAsync(deviceId, response.CertificateArn);
+
+            _ = await CreatePrivateKeySecret(deviceId, response.KeyPair.PrivateKey);
+            _ = await CreatePublicKeySecret(deviceId, response.KeyPair.PublicKey);
+            _ = await CreateCertificateSecret(deviceId, response.CertificatePem);
+
+            return new Tuple<DeviceCredentials, string>(new DeviceCredentials
+            {
+                AuthenticationMode = AuthenticationMode.Certificate,
+                CertificateCredentials = new CertificateCredentials
+                {
+                    CertificatePem = response.CertificatePem,
+                    PrivateKey = response.KeyPair.PrivateKey,
+                    PublicKey = response.KeyPair.PublicKey,
+                }
+            }, response.CertificateArn);
+        }
+
+        private async Task<CreateSecretResponse> CreatePrivateKeySecret(string deviceId, string privateKey)
+        {
+            var request = new CreateSecretRequest
+            {
+                Name = deviceId + PrivateKeyKey,
+                Description = "Private key for the certificate of device " + deviceId,
+                SecretString = privateKey
+            };
+            return await this.amazonSecretsManager.CreateSecretAsync(request);
+        }
+
+        private async Task<CreateSecretResponse> CreatePublicKeySecret(string deviceId, string privateKey)
+        {
+            var request = new CreateSecretRequest
+            {
+                Name = deviceId + PublicKeyKey,
+                Description = "Public key for the certificate of device " + deviceId,
+                SecretString = privateKey
+            };
+            return await this.amazonSecretsManager.CreateSecretAsync(request);
+        }
+
+        private async Task<CreateSecretResponse> CreateCertificateSecret(string deviceId, string certificatePem)
+        {
+            var request = new CreateSecretRequest
+            {
+                Name = deviceId + CertificateKey,
+                Description = "Certificate for the certificate of device " + deviceId,
+                SecretString = certificatePem
+            };
+            return await this.amazonSecretsManager.CreateSecretAsync(request);
+        }
+
+
+        private async Task<DeviceCredentials> GetDeviceCredentialsFromSecretsManager(string deviceId)
+        {
+            var certificate = await GetSecret(deviceId + CertificateKey);
+            var privateKey = await GetSecret(deviceId + PrivateKeyKey);
+            var publicKey = await GetSecret(deviceId + PublicKeyKey);
+            return new DeviceCredentials
+            {
+                AuthenticationMode = AuthenticationMode.Certificate,
+                CertificateCredentials = new CertificateCredentials
+                {
+                    CertificatePem = certificate.SecretString,
+                    PrivateKey = privateKey.SecretString,
+                    PublicKey = publicKey.SecretString,
+                }
+            };
+        }
+
+        private async Task<GetSecretValueResponse> GetSecret(string secretId)
+        {
+            return await this.amazonSecretsManager.GetSecretValueAsync(new GetSecretValueRequest
+            {
+                SecretId = secretId,
+            });
+        }
+
+        public async Task<string> CreateEnrollementScript(string template, Domain.Entities.EdgeDevice device)
+        {
+            var iotDataEndpointResponse = await this.amazonIoTClient.DescribeEndpointAsync(new DescribeEndpointRequest
+            {
+                EndpointType = "iot:Data-ATS"
+            });
+
+            var credentialProviderEndpointResponse = await this.amazonIoTClient.DescribeEndpointAsync(new DescribeEndpointRequest
+            {
+                EndpointType = "iot:CredentialProvider"
+            });
+
+            var credentials = await this.GetDeviceCredentials(device.Name);
+
+            return template.Replace("%DATA_ENDPOINT%", iotDataEndpointResponse!.EndpointAddress, StringComparison.OrdinalIgnoreCase)
+               .Replace("%CREDENTIALS_ENDPOINT%", credentialProviderEndpointResponse.EndpointAddress, StringComparison.OrdinalIgnoreCase)
+               .Replace("%CERTIFICATE%", credentials.CertificateCredentials.CertificatePem, StringComparison.OrdinalIgnoreCase)
+               .Replace("%PRIVATE_KEY%", credentials.CertificateCredentials.PrivateKey, StringComparison.OrdinalIgnoreCase)
+               .Replace("%REGION%", this.configHandler.AWSRegion, StringComparison.OrdinalIgnoreCase)
+               .Replace("%THING_NAME%", device.Name, StringComparison.OrdinalIgnoreCase)
+               .ReplaceLineEndings();
+        }
+
+        public Task<BulkRegistryOperationResult> CreateDeviceWithTwin(string deviceId, bool isEdge, Twin twin, DeviceStatus isEnabled)
+        {
+            throw new NotImplementedException();
+        }
+
+        public Task<bool> CreateEdgeDevice(string deviceId)
+        {
+            throw new NotImplementedException();
+        }
+
+        public async Task RemoveDeviceCredentials(IoTEdgeDevice device)
+        {
+            var request = new ListThingPrincipalsRequest
+            {
+                ThingName = device.DeviceName
+            };
+
+            do
+            {
+                var principalResponse = await this.amazonIoTClient.ListThingPrincipalsAsync(request);
+
+                if (!principalResponse.Principals.Any())
+                {
+                    break;
+                }
+
+                foreach (var item in principalResponse.Principals)
+                {
+                    await RemoveGreengrassCertificateFromPrincipal(device, item);
+                }
+
+                request.NextToken = principalResponse.NextToken;
+            }
+            while (true);
+        }
+
+        private async Task RemoveGreengrassCertificateFromPrincipal(IoTEdgeDevice device, string principalId)
+        {
+            _ = await this.amazonIoTClient.DetachPolicyAsync(new DetachPolicyRequest
+            {
+                Target = principalId,
+                PolicyName = "GreengrassV2IoTThingPolicy"
+            });
+
+            _ = await this.amazonIoTClient.DetachPolicyAsync(new DetachPolicyRequest
+            {
+                Target = principalId,
+                PolicyName = "GreengrassCoreTokenExchangeRoleAliasPolicy"
+            });
+            _ = await this.amazonIoTClient.DetachThingPrincipalAsync(device.DeviceName, principalId);
+
+            _ = await this.amazonSecretsManager.DeleteSecretAsync(new DeleteSecretRequest
+            {
+                ForceDeleteWithoutRecovery = true,
+                SecretId = device.DeviceId + PublicKeyKey,
+            });
+
+            _ = await this.amazonSecretsManager.DeleteSecretAsync(new DeleteSecretRequest
+            {
+                ForceDeleteWithoutRecovery = true,
+                SecretId = device.DeviceId + PrivateKeyKey,
+            });
+
+            _ = await this.amazonSecretsManager.DeleteSecretAsync(new DeleteSecretRequest
+            {
+                ForceDeleteWithoutRecovery = true,
+                SecretId = device.DeviceId + CertificateKey,
+            });
+
+            var awsPricipalCertRegex = new Regex("/arn:aws:iot:([a-z0-9-]*):(\\d*):cert\\/([0-9a-fA-F]*)/gm");
+
+            var matches = awsPricipalCertRegex.Match(principalId);
+
+            if (!matches.Success)
+            {
+                return;
+            }
+
+            var certificateId = matches.Captures[2].Value;
+
+            _ = await this.amazonIoTClient.UpdateCertificateAsync(certificateId, CertificateStatus.REGISTER_INACTIVE);
+            _ = await this.amazonIoTClient.DeleteCertificateAsync(certificateId);
+        }
     }
 }
diff --git a/src/AzureIoTHub.Portal.Infrastructure/Services/DeviceServiceBase.cs b/src/AzureIoTHub.Portal.Infrastructure/Services/DeviceServiceBase.cs
index bcb8b4ddb..5d482a3ed 100644
--- a/src/AzureIoTHub.Portal.Infrastructure/Services/DeviceServiceBase.cs
+++ b/src/AzureIoTHub.Portal.Infrastructure/Services/DeviceServiceBase.cs
@@ -200,9 +200,9 @@ public virtual async Task DeleteDevice(string deviceId)
 
         protected abstract Task DeleteDeviceInDatabase(string deviceId);
 
-        public virtual Task<EnrollmentCredentials> GetCredentials(string deviceId)
+        public virtual Task<DeviceCredentials> GetCredentials(string deviceId)
         {
-            return this.externalDevicesService.GetEnrollmentCredentials(deviceId);
+            return this.externalDevicesService.GetDeviceCredentials(deviceId);
         }
 
         public abstract Task<IEnumerable<LoRaDeviceTelemetryDto>> GetDeviceTelemetry(string deviceId);
diff --git a/src/AzureIoTHub.Portal.Infrastructure/Startup/IServiceCollectionExtension.cs b/src/AzureIoTHub.Portal.Infrastructure/Startup/IServiceCollectionExtension.cs
index 41cc90f75..5a1e686f2 100644
--- a/src/AzureIoTHub.Portal.Infrastructure/Startup/IServiceCollectionExtension.cs
+++ b/src/AzureIoTHub.Portal.Infrastructure/Startup/IServiceCollectionExtension.cs
@@ -112,6 +112,7 @@ private static IServiceCollection ConfigureRepositories(this IServiceCollection
         private static IServiceCollection ConfigureServices(this IServiceCollection services)
         {
             return services
+                .AddTransient<IEdgeEnrollementHelper, EdgeEnrollementHelper>()
                 .AddTransient<IDeviceModelPropertiesService, DeviceModelPropertiesService>()
                 .AddTransient<IDeviceTagService, DeviceTagService>()
                 .AddTransient<IDeviceModelPropertiesService, DeviceModelPropertiesService>();
diff --git a/src/AzureIoTHub.Portal.Postgres/Migrations/20230529162823_Add dataprotection.Designer.cs b/src/AzureIoTHub.Portal.Postgres/Migrations/20230529162823_Add dataprotection.Designer.cs
new file mode 100644
index 000000000..9e0f50cce
--- /dev/null
+++ b/src/AzureIoTHub.Portal.Postgres/Migrations/20230529162823_Add dataprotection.Designer.cs	
@@ -0,0 +1,609 @@
+// <auto-generated />
+using System;
+using AzureIoTHub.Portal.Infrastructure;
+using Microsoft.EntityFrameworkCore;
+using Microsoft.EntityFrameworkCore.Infrastructure;
+using Microsoft.EntityFrameworkCore.Migrations;
+using Microsoft.EntityFrameworkCore.Storage.ValueConversion;
+using Npgsql.EntityFrameworkCore.PostgreSQL.Metadata;
+
+#nullable disable
+
+namespace AzureIoTHub.Portal.Postgres.Migrations
+{
+    [DbContext(typeof(PortalDbContext))]
+    [Migration("20230529162823_Add dataprotection")]
+    partial class Adddataprotection
+    {
+        /// <inheritdoc />
+        protected override void BuildTargetModel(ModelBuilder modelBuilder)
+        {
+#pragma warning disable 612, 618
+            modelBuilder
+                .HasAnnotation("ProductVersion", "7.0.5")
+                .HasAnnotation("Relational:MaxIdentifierLength", 63);
+
+            NpgsqlModelBuilderExtensions.UseIdentityByDefaultColumns(modelBuilder);
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.Concentrator", b =>
+                {
+                    b.Property<string>("Id")
+                        .HasColumnType("text");
+
+                    b.Property<string>("ClientThumbprint")
+                        .HasColumnType("text");
+
+                    b.Property<string>("DeviceType")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<bool>("IsConnected")
+                        .HasColumnType("boolean");
+
+                    b.Property<bool>("IsEnabled")
+                        .HasColumnType("boolean");
+
+                    b.Property<string>("LoraRegion")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<string>("Name")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<int>("Version")
+                        .HasColumnType("integer");
+
+                    b.HasKey("Id");
+
+                    b.ToTable("Concentrators");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.Device", b =>
+                {
+                    b.Property<string>("Id")
+                        .HasColumnType("text");
+
+                    b.Property<string>("DeviceModelId")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<bool>("IsConnected")
+                        .HasColumnType("boolean");
+
+                    b.Property<bool>("IsEnabled")
+                        .HasColumnType("boolean");
+
+                    b.Property<string>("Name")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<DateTime>("StatusUpdatedTime")
+                        .HasColumnType("timestamp with time zone");
+
+                    b.Property<int>("Version")
+                        .HasColumnType("integer");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("DeviceModelId");
+
+                    b.ToTable("Devices", (string)null);
+
+                    b.UseTptMappingStrategy();
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.DeviceModel", b =>
+                {
+                    b.Property<string>("Id")
+                        .HasColumnType("text");
+
+                    b.Property<bool?>("ABPRelaxMode")
+                        .HasColumnType("boolean");
+
+                    b.Property<string>("AppEUI")
+                        .HasColumnType("text");
+
+                    b.Property<int>("ClassType")
+                        .HasColumnType("integer");
+
+                    b.Property<int?>("Deduplication")
+                        .HasColumnType("integer");
+
+                    b.Property<string>("Description")
+                        .HasColumnType("text");
+
+                    b.Property<bool?>("Downlink")
+                        .HasColumnType("boolean");
+
+                    b.Property<bool>("IsBuiltin")
+                        .HasColumnType("boolean");
+
+                    b.Property<int?>("KeepAliveTimeout")
+                        .HasColumnType("integer");
+
+                    b.Property<string>("Name")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<int?>("PreferredWindow")
+                        .HasColumnType("integer");
+
+                    b.Property<int?>("RXDelay")
+                        .HasColumnType("integer");
+
+                    b.Property<string>("SensorDecoder")
+                        .HasColumnType("text");
+
+                    b.Property<bool>("SupportLoRaFeatures")
+                        .HasColumnType("boolean");
+
+                    b.Property<bool?>("UseOTAA")
+                        .HasColumnType("boolean");
+
+                    b.HasKey("Id");
+
+                    b.ToTable("DeviceModels");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.DeviceModelCommand", b =>
+                {
+                    b.Property<string>("Id")
+                        .HasColumnType("text");
+
+                    b.Property<bool>("Confirmed")
+                        .HasColumnType("boolean");
+
+                    b.Property<string>("DeviceModelId")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<string>("Frame")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<bool>("IsBuiltin")
+                        .HasColumnType("boolean");
+
+                    b.Property<string>("Name")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<int>("Port")
+                        .HasColumnType("integer");
+
+                    b.HasKey("Id");
+
+                    b.ToTable("DeviceModelCommands");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.DeviceModelProperty", b =>
+                {
+                    b.Property<string>("Id")
+                        .HasColumnType("text");
+
+                    b.Property<string>("DisplayName")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<bool>("IsWritable")
+                        .HasColumnType("boolean");
+
+                    b.Property<string>("ModelId")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<string>("Name")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<int>("Order")
+                        .HasColumnType("integer");
+
+                    b.Property<int>("PropertyType")
+                        .HasColumnType("integer");
+
+                    b.HasKey("Id");
+
+                    b.ToTable("DeviceModelProperties");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.DeviceTag", b =>
+                {
+                    b.Property<string>("Id")
+                        .HasColumnType("text");
+
+                    b.Property<string>("Label")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<bool>("Required")
+                        .HasColumnType("boolean");
+
+                    b.Property<bool>("Searchable")
+                        .HasColumnType("boolean");
+
+                    b.HasKey("Id");
+
+                    b.ToTable("DeviceTags");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.DeviceTagValue", b =>
+                {
+                    b.Property<string>("Id")
+                        .HasColumnType("text");
+
+                    b.Property<string>("DeviceId")
+                        .HasColumnType("text");
+
+                    b.Property<string>("EdgeDeviceId")
+                        .HasColumnType("text");
+
+                    b.Property<string>("Name")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<string>("Value")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("DeviceId");
+
+                    b.HasIndex("EdgeDeviceId");
+
+                    b.ToTable("DeviceTagValues");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.EdgeDevice", b =>
+                {
+                    b.Property<string>("Id")
+                        .HasColumnType("text");
+
+                    b.Property<string>("ConnectionState")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<string>("DeviceModelId")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<bool>("IsEnabled")
+                        .HasColumnType("boolean");
+
+                    b.Property<string>("Name")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<int>("NbDevices")
+                        .HasColumnType("integer");
+
+                    b.Property<int>("NbModules")
+                        .HasColumnType("integer");
+
+                    b.Property<string>("Scope")
+                        .HasColumnType("text");
+
+                    b.Property<int>("Version")
+                        .HasColumnType("integer");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("DeviceModelId");
+
+                    b.ToTable("EdgeDevices");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.EdgeDeviceModel", b =>
+                {
+                    b.Property<string>("Id")
+                        .HasColumnType("text");
+
+                    b.Property<string>("Description")
+                        .HasColumnType("text");
+
+                    b.Property<string>("ExternalIdentifier")
+                        .HasColumnType("text");
+
+                    b.Property<string>("Name")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.HasKey("Id");
+
+                    b.ToTable("EdgeDeviceModels");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.EdgeDeviceModelCommand", b =>
+                {
+                    b.Property<string>("Id")
+                        .HasColumnType("text");
+
+                    b.Property<string>("EdgeDeviceModelId")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<string>("ModuleName")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<string>("Name")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.HasKey("Id");
+
+                    b.ToTable("EdgeDeviceModelCommands");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.Label", b =>
+                {
+                    b.Property<string>("Id")
+                        .HasColumnType("text");
+
+                    b.Property<string>("Color")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.Property<string>("DeviceId")
+                        .HasColumnType("text");
+
+                    b.Property<string>("DeviceModelId")
+                        .HasColumnType("text");
+
+                    b.Property<string>("EdgeDeviceId")
+                        .HasColumnType("text");
+
+                    b.Property<string>("EdgeDeviceModelId")
+                        .HasColumnType("text");
+
+                    b.Property<string>("Name")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("DeviceId");
+
+                    b.HasIndex("DeviceModelId");
+
+                    b.HasIndex("EdgeDeviceId");
+
+                    b.HasIndex("EdgeDeviceModelId");
+
+                    b.ToTable("Labels");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.LoRaDeviceTelemetry", b =>
+                {
+                    b.Property<string>("Id")
+                        .HasColumnType("text");
+
+                    b.Property<DateTime>("EnqueuedTime")
+                        .HasColumnType("timestamp with time zone");
+
+                    b.Property<string>("LorawanDeviceId")
+                        .HasColumnType("text");
+
+                    b.Property<string>("Telemetry")
+                        .IsRequired()
+                        .HasColumnType("text");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("LorawanDeviceId");
+
+                    b.ToTable("LoRaDeviceTelemetry");
+                });
+
+            modelBuilder.Entity("Microsoft.AspNetCore.DataProtection.EntityFrameworkCore.DataProtectionKey", b =>
+                {
+                    b.Property<int>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("integer");
+
+                    NpgsqlPropertyBuilderExtensions.UseIdentityByDefaultColumn(b.Property<int>("Id"));
+
+                    b.Property<string>("FriendlyName")
+                        .HasColumnType("text");
+
+                    b.Property<string>("Xml")
+                        .HasColumnType("text");
+
+                    b.HasKey("Id");
+
+                    b.ToTable("DataProtectionKeys");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.LorawanDevice", b =>
+                {
+                    b.HasBaseType("AzureIoTHub.Portal.Domain.Entities.Device");
+
+                    b.Property<bool?>("ABPRelaxMode")
+                        .HasColumnType("boolean");
+
+                    b.Property<bool>("AlreadyLoggedInOnce")
+                        .HasColumnType("boolean");
+
+                    b.Property<string>("AppEUI")
+                        .HasColumnType("text");
+
+                    b.Property<string>("AppKey")
+                        .HasColumnType("text");
+
+                    b.Property<string>("AppSKey")
+                        .HasColumnType("text");
+
+                    b.Property<int>("ClassType")
+                        .HasColumnType("integer");
+
+                    b.Property<string>("DataRate")
+                        .HasColumnType("text");
+
+                    b.Property<int>("Deduplication")
+                        .HasColumnType("integer");
+
+                    b.Property<string>("DevAddr")
+                        .HasColumnType("text");
+
+                    b.Property<bool?>("Downlink")
+                        .HasColumnType("boolean");
+
+                    b.Property<int?>("FCntDownStart")
+                        .HasColumnType("integer");
+
+                    b.Property<int?>("FCntResetCounter")
+                        .HasColumnType("integer");
+
+                    b.Property<int?>("FCntUpStart")
+                        .HasColumnType("integer");
+
+                    b.Property<string>("GatewayID")
+                        .HasColumnType("text");
+
+                    b.Property<int?>("KeepAliveTimeout")
+                        .HasColumnType("integer");
+
+                    b.Property<string>("NbRep")
+                        .HasColumnType("text");
+
+                    b.Property<string>("NwkSKey")
+                        .HasColumnType("text");
+
+                    b.Property<int>("PreferredWindow")
+                        .HasColumnType("integer");
+
+                    b.Property<int?>("RX1DROffset")
+                        .HasColumnType("integer");
+
+                    b.Property<int?>("RX2DataRate")
+                        .HasColumnType("integer");
+
+                    b.Property<int?>("RXDelay")
+                        .HasColumnType("integer");
+
+                    b.Property<string>("ReportedRX1DROffset")
+                        .HasColumnType("text");
+
+                    b.Property<string>("ReportedRX2DataRate")
+                        .HasColumnType("text");
+
+                    b.Property<string>("ReportedRXDelay")
+                        .HasColumnType("text");
+
+                    b.Property<string>("SensorDecoder")
+                        .HasColumnType("text");
+
+                    b.Property<bool?>("Supports32BitFCnt")
+                        .HasColumnType("boolean");
+
+                    b.Property<string>("TxPower")
+                        .HasColumnType("text");
+
+                    b.Property<bool>("UseOTAA")
+                        .HasColumnType("boolean");
+
+                    b.ToTable("LorawanDevices", (string)null);
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.Device", b =>
+                {
+                    b.HasOne("AzureIoTHub.Portal.Domain.Entities.DeviceModel", "DeviceModel")
+                        .WithMany()
+                        .HasForeignKey("DeviceModelId")
+                        .OnDelete(DeleteBehavior.Cascade)
+                        .IsRequired();
+
+                    b.Navigation("DeviceModel");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.DeviceTagValue", b =>
+                {
+                    b.HasOne("AzureIoTHub.Portal.Domain.Entities.Device", null)
+                        .WithMany("Tags")
+                        .HasForeignKey("DeviceId");
+
+                    b.HasOne("AzureIoTHub.Portal.Domain.Entities.EdgeDevice", null)
+                        .WithMany("Tags")
+                        .HasForeignKey("EdgeDeviceId");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.EdgeDevice", b =>
+                {
+                    b.HasOne("AzureIoTHub.Portal.Domain.Entities.EdgeDeviceModel", "DeviceModel")
+                        .WithMany()
+                        .HasForeignKey("DeviceModelId")
+                        .OnDelete(DeleteBehavior.Cascade)
+                        .IsRequired();
+
+                    b.Navigation("DeviceModel");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.Label", b =>
+                {
+                    b.HasOne("AzureIoTHub.Portal.Domain.Entities.Device", null)
+                        .WithMany("Labels")
+                        .HasForeignKey("DeviceId");
+
+                    b.HasOne("AzureIoTHub.Portal.Domain.Entities.DeviceModel", null)
+                        .WithMany("Labels")
+                        .HasForeignKey("DeviceModelId");
+
+                    b.HasOne("AzureIoTHub.Portal.Domain.Entities.EdgeDevice", null)
+                        .WithMany("Labels")
+                        .HasForeignKey("EdgeDeviceId");
+
+                    b.HasOne("AzureIoTHub.Portal.Domain.Entities.EdgeDeviceModel", null)
+                        .WithMany("Labels")
+                        .HasForeignKey("EdgeDeviceModelId");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.LoRaDeviceTelemetry", b =>
+                {
+                    b.HasOne("AzureIoTHub.Portal.Domain.Entities.LorawanDevice", null)
+                        .WithMany("Telemetry")
+                        .HasForeignKey("LorawanDeviceId");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.LorawanDevice", b =>
+                {
+                    b.HasOne("AzureIoTHub.Portal.Domain.Entities.Device", null)
+                        .WithOne()
+                        .HasForeignKey("AzureIoTHub.Portal.Domain.Entities.LorawanDevice", "Id")
+                        .OnDelete(DeleteBehavior.Cascade)
+                        .IsRequired();
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.Device", b =>
+                {
+                    b.Navigation("Labels");
+
+                    b.Navigation("Tags");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.DeviceModel", b =>
+                {
+                    b.Navigation("Labels");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.EdgeDevice", b =>
+                {
+                    b.Navigation("Labels");
+
+                    b.Navigation("Tags");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.EdgeDeviceModel", b =>
+                {
+                    b.Navigation("Labels");
+                });
+
+            modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.LorawanDevice", b =>
+                {
+                    b.Navigation("Telemetry");
+                });
+#pragma warning restore 612, 618
+        }
+    }
+}
diff --git a/src/AzureIoTHub.Portal.Postgres/Migrations/20230529162823_Add dataprotection.cs b/src/AzureIoTHub.Portal.Postgres/Migrations/20230529162823_Add dataprotection.cs
new file mode 100644
index 000000000..b19d87e22
--- /dev/null
+++ b/src/AzureIoTHub.Portal.Postgres/Migrations/20230529162823_Add dataprotection.cs	
@@ -0,0 +1,40 @@
+// Copyright (c) CGI France. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+#nullable disable
+
+namespace AzureIoTHub.Portal.Postgres.Migrations
+{
+
+    using Microsoft.EntityFrameworkCore.Migrations;
+    using Npgsql.EntityFrameworkCore.PostgreSQL.Metadata;
+
+    /// <inheritdoc />
+    public partial class Adddataprotection : Migration
+    {
+        /// <inheritdoc />
+        protected override void Up(MigrationBuilder migrationBuilder)
+        {
+            _ = migrationBuilder.CreateTable(
+                name: "DataProtectionKeys",
+                columns: table => new
+                {
+                    Id = table.Column<int>(type: "integer", nullable: false)
+                        .Annotation("Npgsql:ValueGenerationStrategy", NpgsqlValueGenerationStrategy.IdentityByDefaultColumn),
+                    FriendlyName = table.Column<string>(type: "text", nullable: true),
+                    Xml = table.Column<string>(type: "text", nullable: true)
+                },
+                constraints: table =>
+                {
+                    _ = table.PrimaryKey("PK_DataProtectionKeys", x => x.Id);
+                });
+        }
+
+        /// <inheritdoc />
+        protected override void Down(MigrationBuilder migrationBuilder)
+        {
+            _ = migrationBuilder.DropTable(
+                name: "DataProtectionKeys");
+        }
+    }
+}
diff --git a/src/AzureIoTHub.Portal.Postgres/Migrations/PortalDbContextModelSnapshot.cs b/src/AzureIoTHub.Portal.Postgres/Migrations/PortalDbContextModelSnapshot.cs
index 27a95859e..0ff757c60 100644
--- a/src/AzureIoTHub.Portal.Postgres/Migrations/PortalDbContextModelSnapshot.cs
+++ b/src/AzureIoTHub.Portal.Postgres/Migrations/PortalDbContextModelSnapshot.cs
@@ -17,7 +17,7 @@ protected override void BuildModel(ModelBuilder modelBuilder)
         {
 #pragma warning disable 612, 618
             modelBuilder
-                .HasAnnotation("ProductVersion", "7.0.4")
+                .HasAnnotation("ProductVersion", "7.0.5")
                 .HasAnnotation("Relational:MaxIdentifierLength", 63);
 
             NpgsqlModelBuilderExtensions.UseIdentityByDefaultColumns(modelBuilder);
@@ -394,6 +394,25 @@ protected override void BuildModel(ModelBuilder modelBuilder)
                     b.ToTable("LoRaDeviceTelemetry");
                 });
 
+            modelBuilder.Entity("Microsoft.AspNetCore.DataProtection.EntityFrameworkCore.DataProtectionKey", b =>
+                {
+                    b.Property<int>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("integer");
+
+                    NpgsqlPropertyBuilderExtensions.UseIdentityByDefaultColumn(b.Property<int>("Id"));
+
+                    b.Property<string>("FriendlyName")
+                        .HasColumnType("text");
+
+                    b.Property<string>("Xml")
+                        .HasColumnType("text");
+
+                    b.HasKey("Id");
+
+                    b.ToTable("DataProtectionKeys");
+                });
+
             modelBuilder.Entity("AzureIoTHub.Portal.Domain.Entities.LorawanDevice", b =>
                 {
                     b.HasBaseType("AzureIoTHub.Portal.Domain.Entities.Device");
diff --git a/src/AzureIoTHub.Portal.Server/AzureIoTHub.Portal.Server.csproj b/src/AzureIoTHub.Portal.Server/AzureIoTHub.Portal.Server.csproj
index aedd9fd00..ec76909c8 100644
--- a/src/AzureIoTHub.Portal.Server/AzureIoTHub.Portal.Server.csproj
+++ b/src/AzureIoTHub.Portal.Server/AzureIoTHub.Portal.Server.csproj
@@ -43,13 +43,14 @@
     <PackageReference Include="CsvHelper" Version="30.0.1" />
     <PackageReference Include="Hellang.Middleware.ProblemDetails" Version="6.5.1" />
     <PackageReference Include="Microsoft.ApplicationInsights.AspNetCore" Version="2.21.0" />
-    <PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="7.0.7" NoWarn="NU1605" />
-    <PackageReference Include="Microsoft.AspNetCore.Authentication.OpenIdConnect" Version="7.0.7" NoWarn="NU1605" />
-    <PackageReference Include="Microsoft.AspNetCore.Components.WebAssembly.Server" Version="7.0.7" />
-    <PackageReference Include="Microsoft.AspNetCore.Mvc.Versioning" Version="5.1.0" />
-    <PackageReference Include="Microsoft.Azure.Devices" Version="1.39.0" />
-    <PackageReference Include="Microsoft.Azure.Devices.Provisioning.Service" Version="1.18.3" />
-    <PackageReference Include="Microsoft.Azure.Devices.Shared" Version="1.30.3" />
+    <PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="7.0.4" NoWarn="NU1605" />
+    <PackageReference Include="Microsoft.AspNetCore.Authentication.OpenIdConnect" Version="7.0.4" NoWarn="NU1605" />
+    <PackageReference Include="Microsoft.AspNetCore.Components.WebAssembly.Server" Version="7.0.4" />
+    <PackageReference Include="Microsoft.AspNetCore.DataProtection.EntityFrameworkCore" Version="7.0.5" />
+    <PackageReference Include="Microsoft.AspNetCore.Mvc.Versioning" Version="5.0.0" />
+    <PackageReference Include="Microsoft.Azure.Devices" Version="1.38.2" />
+    <PackageReference Include="Microsoft.Azure.Devices.Provisioning.Service" Version="1.18.2" />
+    <PackageReference Include="Microsoft.Azure.Devices.Shared" Version="1.30.2" />
     <PackageReference Include="Microsoft.CodeAnalysis.Analyzers" Version="3.3.4" />
     <PackageReference Include="Microsoft.CodeAnalysis.NetAnalyzers" Version="7.0.3">
       <PrivateAssets>all</PrivateAssets>
diff --git a/src/AzureIoTHub.Portal.Server/Controllers/v1.0/DevicesController.cs b/src/AzureIoTHub.Portal.Server/Controllers/v1.0/DevicesController.cs
index 4f825175e..e4c985b5d 100644
--- a/src/AzureIoTHub.Portal.Server/Controllers/v1.0/DevicesController.cs
+++ b/src/AzureIoTHub.Portal.Server/Controllers/v1.0/DevicesController.cs
@@ -100,7 +100,7 @@ public override Task<IActionResult> Delete(string deviceID)
         /// </summary>
         /// <param name="deviceID">The device identifier.</param>
         [HttpGet("{deviceID}/credentials", Name = "GET Device Credentials")]
-        public override Task<ActionResult<EnrollmentCredentials>> GetCredentials(string deviceID)
+        public override Task<ActionResult<DeviceCredentials>> GetCredentials(string deviceID)
         {
             return base.GetCredentials(deviceID);
         }
diff --git a/src/AzureIoTHub.Portal.Server/Controllers/v1.0/DevicesControllerBase.cs b/src/AzureIoTHub.Portal.Server/Controllers/v1.0/DevicesControllerBase.cs
index fd74c3665..a21808109 100644
--- a/src/AzureIoTHub.Portal.Server/Controllers/v1.0/DevicesControllerBase.cs
+++ b/src/AzureIoTHub.Portal.Server/Controllers/v1.0/DevicesControllerBase.cs
@@ -170,7 +170,7 @@ public virtual Task<IEnumerable<LabelDto>> GetAvailableLabels()
         /// Returns the device enrollment credentials.
         /// </summary>
         /// <param name="deviceID">The device identifier.</param>
-        public virtual async Task<ActionResult<EnrollmentCredentials>> GetCredentials(string deviceID)
+        public virtual async Task<ActionResult<DeviceCredentials>> GetCredentials(string deviceID)
         {
             return Ok(await this.deviceService.GetCredentials(deviceID));
         }
diff --git a/src/AzureIoTHub.Portal.Server/Controllers/v1.0/EdgeDevicesController.cs b/src/AzureIoTHub.Portal.Server/Controllers/v1.0/EdgeDevicesController.cs
index 59bb0f081..be3c084d8 100644
--- a/src/AzureIoTHub.Portal.Server/Controllers/v1.0/EdgeDevicesController.cs
+++ b/src/AzureIoTHub.Portal.Server/Controllers/v1.0/EdgeDevicesController.cs
@@ -6,18 +6,20 @@ namespace AzureIoTHub.Portal.Server.Controllers.V10
     using System;
     using System.Collections.Generic;
     using System.Linq;
+    using System.Security.Cryptography;
     using System.Threading.Tasks;
     using AzureIoTHub.Portal.Application.Services;
-    using AzureIoTHub.Portal.Domain.Exceptions;
     using AzureIoTHub.Portal.Models.v10;
     using AzureIoTHub.Portal.Shared.Models.v10;
     using Microsoft.AspNetCore.Authorization;
+    using Microsoft.AspNetCore.DataProtection;
     using Microsoft.AspNetCore.Http;
     using Microsoft.AspNetCore.Mvc;
     using Microsoft.AspNetCore.Mvc.Routing;
     using Microsoft.AspNetCore.Routing;
     using Microsoft.Azure.Devices.Common.Exceptions;
     using Microsoft.Extensions.Logging;
+    using Newtonsoft.Json;
 
     [Authorize]
     [ApiController]
@@ -41,6 +43,13 @@ public class EdgeDevicesController : ControllerBase
         /// </summary>
         private readonly IEdgeDevicesService edgeDevicesService;
 
+        /// <summary>
+        /// The data protector
+        /// </summary>
+        private readonly ITimeLimitedDataProtector protector;
+
+        internal const string EdgeEnrollementKeyProtectorName = "EdgeEnrollementKeyProtector";
+
         /// <summary>
         /// Initializes a new instance of the <see cref="EdgeDevicesController"/> class.
         /// </summary>
@@ -50,11 +59,16 @@ public class EdgeDevicesController : ControllerBase
         public EdgeDevicesController(
             ILogger<EdgeDevicesController> logger,
             IExternalDeviceService service,
-            IEdgeDevicesService edgeDevicesService)
+            IEdgeDevicesService edgeDevicesService,
+            IDataProtectionProvider dataProtectionProvider)
         {
             this.edgeDevicesService = edgeDevicesService;
             this.logger = logger;
             this.externalDevicesService = service;
+
+            this.protector = dataProtectionProvider
+                    .CreateProtector(EdgeEnrollementKeyProtectorName)
+                    .ToTimeLimitedDataProtector();
         }
 
         /// <summary>
@@ -174,15 +188,61 @@ public async Task<IActionResult> DeleteDeviceAsync(string deviceId)
         /// <param name="deviceId">The device identifier.</param>
         [HttpGet("{deviceId}/credentials", Name = "GET Device enrollment credentials")]
         [ProducesResponseType(StatusCodes.Status200OK)]
-        public async Task<ActionResult<EnrollmentCredentials>> GetCredentials(string deviceId)
+        public async Task<ActionResult<SymmetricCredentials>> GetCredentials(string deviceId)
+        {
+            var device = await this.edgeDevicesService.GetEdgeDevice(deviceId);
+
+            if (device == null)
+            {
+                return NotFound();
+            }
+
+            return Ok(await this.externalDevicesService.GetEdgeDeviceCredentials(device));
+        }
+
+
+        /// <summary>
+        /// Gets the IoT Edge device enrollement script Url.
+        /// </summary>
+        /// <param name="deviceId">The device identifier.</param>
+        [HttpGet("{deviceId}/enrollementScript/{templateName}", Name = "GET Device enrollment script URL")]
+        [ProducesResponseType(StatusCodes.Status200OK)]
+        public ActionResult<string> GetEnrollementScriptUrl(string deviceId, string templateName)
+        {
+            if (deviceId == null)
+            {
+                return NotFound();
+            }
+
+            var enrollementParameters = new Dictionary<string, string>
+            {
+                { "deviceId", deviceId },
+                { "templateName", templateName}
+            };
+
+            var protectedParameters = protector.Protect(JsonConvert.SerializeObject(enrollementParameters), DateTimeOffset.UtcNow.AddMinutes(15));
+
+            return Ok(Url.ActionLink(nameof(GetEnrollementScript), values: new
+            {
+                code = protectedParameters
+            }));
+        }
+
+
+        [AllowAnonymous]
+        [HttpGet("enroll", Name = "GET Device enrollment script")]
+        public async Task<ActionResult<string>> GetEnrollementScript([FromQuery] string code)
         {
             try
             {
-                return Ok(await this.externalDevicesService.GetEdgeDeviceCredentials(deviceId));
+                var parameters = JsonConvert.DeserializeObject<Dictionary<string, string>>(protector.Unprotect(code));
+
+                return Ok(await this.edgeDevicesService
+                                .GetEdgeDeviceEnrollementScript(parameters["deviceId"], parameters["templateName"]));
             }
-            catch (ResourceNotFoundException e)
+            catch (CryptographicException ex)
             {
-                return NotFound(e);
+                return BadRequest(ex.Message);
             }
         }
 
diff --git a/src/AzureIoTHub.Portal.Server/Controllers/v1.0/LoRaWAN/LoRaWANDevicesController.cs b/src/AzureIoTHub.Portal.Server/Controllers/v1.0/LoRaWAN/LoRaWANDevicesController.cs
index f5c114557..b6925f336 100644
--- a/src/AzureIoTHub.Portal.Server/Controllers/v1.0/LoRaWAN/LoRaWANDevicesController.cs
+++ b/src/AzureIoTHub.Portal.Server/Controllers/v1.0/LoRaWAN/LoRaWANDevicesController.cs
@@ -117,9 +117,9 @@ public async Task<IActionResult> ExecuteCommand(string deviceId, string commandI
         }
 
         [ApiExplorerSettings(IgnoreApi = true)]
-        public override Task<ActionResult<EnrollmentCredentials>> GetCredentials(string deviceID)
+        public override Task<ActionResult<DeviceCredentials>> GetCredentials(string deviceID)
         {
-            return Task.FromResult<ActionResult<EnrollmentCredentials>>(NotFound());
+            return Task.FromResult<ActionResult<DeviceCredentials>>(NotFound());
         }
 
         [HttpGet("gateways", Name = "Get Gateways")]
diff --git a/src/AzureIoTHub.Portal.Server/Services/AWSEdgeDevicesService.cs b/src/AzureIoTHub.Portal.Server/Services/AWSEdgeDevicesService.cs
new file mode 100644
index 000000000..3cc67b7b4
--- /dev/null
+++ b/src/AzureIoTHub.Portal.Server/Services/AWSEdgeDevicesService.cs
@@ -0,0 +1,168 @@
+// Copyright (c) CGI France. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+namespace AzureIoTHub.Portal.Server.Services
+{
+    using System;
+    using System.Threading.Tasks;
+    using Amazon.IoT.Model;
+    using AutoMapper;
+    using AzureIoTHub.Portal.Application.Managers;
+    using AzureIoTHub.Portal.Application.Services;
+    using AzureIoTHub.Portal.Application.Services.AWS;
+    using AzureIoTHub.Portal.Domain;
+    using AzureIoTHub.Portal.Domain.Repositories;
+    using AzureIoTHub.Portal.Infrastructure.Helpers;
+    using AzureIoTHub.Portal.Models.v10;
+
+    public class AWSEdgeDevicesService : EdgeDevicesServiceBase, IEdgeDevicesService
+    {
+        /// <summary>
+        /// The device idevice service.
+        /// </summary>
+        private readonly IAWSExternalDeviceService awsExternalDevicesService;
+        private readonly IExternalDeviceService externalDeviceService;
+
+        private readonly IUnitOfWork unitOfWork;
+        private readonly IEdgeDeviceRepository edgeDeviceRepository;
+        private readonly IEdgeEnrollementHelper edgeEnrollementHelper;
+        private readonly IEdgeDeviceModelRepository deviceModelRepository;
+
+        private readonly ConfigHandler configHandler;
+
+        public AWSEdgeDevicesService(
+            ConfigHandler configHandler,
+            IEdgeEnrollementHelper edgeEnrollementHelper,
+            IExternalDeviceService externalDeviceService,
+            IAWSExternalDeviceService awsExternalDevicesService,
+            IDeviceTagService deviceTagService,
+            IMapper mapper,
+            IUnitOfWork unitOfWork,
+            IEdgeDeviceRepository edgeDeviceRepository,
+            IEdgeDeviceModelRepository deviceModelRepository,
+            IDeviceTagValueRepository deviceTagValueRepository,
+            ILabelRepository labelRepository,
+            IDeviceModelImageManager deviceModelImageManager)
+            : base(deviceTagService, edgeDeviceRepository, mapper, deviceModelImageManager, deviceTagValueRepository, labelRepository)
+        {
+            this.configHandler = configHandler;
+            this.edgeEnrollementHelper = edgeEnrollementHelper;
+            this.awsExternalDevicesService = awsExternalDevicesService;
+            this.externalDeviceService = externalDeviceService;
+            this.deviceModelRepository = deviceModelRepository;
+
+            this.unitOfWork = unitOfWork;
+            this.edgeDeviceRepository = edgeDeviceRepository;
+        }
+
+        /// <summary>
+        /// Create a new edge device.
+        /// </summary>
+        /// <param name="edgeDevice"> the new edge device.</param>
+        /// <returns>the result of the operation.</returns>
+        public async Task<IoTEdgeDevice> CreateEdgeDevice(IoTEdgeDevice edgeDevice)
+        {
+            ArgumentNullException.ThrowIfNull(edgeDevice, nameof(edgeDevice));
+
+            var model = await this.deviceModelRepository.GetByIdAsync(edgeDevice.ModelId);
+
+            if (model == null)
+            {
+                throw new InvalidOperationException($"Edge model '{edgeDevice.ModelId}' doesn't exist!");
+            }
+
+            var response = await this.awsExternalDevicesService.CreateDevice(new CreateThingRequest
+            {
+                ThingName = edgeDevice.DeviceName,
+                ThingTypeName = model.Name
+            });
+
+            edgeDevice.DeviceId = response.ThingId;
+            var result = await base.CreateEdgeDeviceInDatabase(edgeDevice);
+
+            await this.unitOfWork.SaveAsync();
+
+            return result;
+        }
+
+
+        /// <summary>
+        /// Update the edge device ant the twin.
+        /// </summary>
+        /// <param name="edgeDevice">edge device object update.</param>
+        /// <returns>device twin updated.</returns>
+        public async Task<IoTEdgeDevice> UpdateEdgeDevice(IoTEdgeDevice edgeDevice)
+        {
+            ArgumentNullException.ThrowIfNull(edgeDevice, nameof(edgeDevice));
+
+            _ = await this.awsExternalDevicesService.GetDevice(edgeDevice.DeviceId);
+
+            // TODO
+            var result = await UpdateEdgeDeviceInDatabase(edgeDevice);
+
+            await this.unitOfWork.SaveAsync();
+
+            return result;
+        }
+
+
+        public async Task DeleteEdgeDeviceAsync(string deviceId)
+        {
+            var device = await base.GetEdgeDevice(deviceId);
+
+            await this.externalDeviceService.RemoveDeviceCredentials(device);
+            await this.externalDeviceService.DeleteDevice(device.DeviceName);
+
+            await DeleteEdgeDeviceInDatabase(deviceId);
+
+            await this.unitOfWork.SaveAsync();
+        }
+
+        /// <summary>
+        /// Get edge device with its modules.
+        /// </summary>
+        /// <param name="edgeDeviceId">device id.</param>
+        /// <returns>IoTEdgeDevice object.</returns>
+        public async Task<IoTEdgeDevice> GetEdgeDevice(string edgeDeviceId)
+        {
+            var deviceDto = await base.GetEdgeDevice(edgeDeviceId);
+
+            // TODO
+
+            return deviceDto;
+        }
+
+
+        /// <summary>
+        /// Executes the module method on the IoT Edge device.
+        /// </summary>
+        /// <param name="moduleName"></param>
+        /// <param name="deviceId"></param>
+        /// <param name="methodName"></param>
+        /// <returns></returns>
+        public async Task<C2Dresult> ExecuteModuleMethod(string deviceId, string moduleName, string methodName)
+        {
+            throw new NotImplementedException();
+        }
+
+        /// <summary>
+        /// Execute the custom module command.
+        /// </summary>
+        /// <param name="deviceId">the device identifier.</param>
+        /// <param name="moduleName">the module name.</param>
+        /// <param name="commandName">the command name.</param>
+        /// <returns></returns>
+        public async Task<C2Dresult> ExecuteModuleCommand(string deviceId, string moduleName, string commandName)
+        {
+            throw new NotImplementedException();
+        }
+
+        public async Task<string> GetEdgeDeviceEnrollementScript(string deviceId, string templateName)
+        {
+            var template = edgeEnrollementHelper.GetEdgeEnrollementTemplate($"{configHandler.CloudProvider}.{templateName}");
+            var device = await this.edgeDeviceRepository.GetByIdAsync(deviceId);
+
+            return await this.externalDeviceService.CreateEnrollementScript(template, device);
+        }
+    }
+}
diff --git a/src/AzureIoTHub.Portal.Server/Services/EdgeDevicesService.cs b/src/AzureIoTHub.Portal.Server/Services/AzureEdgeDevicesService.cs
similarity index 53%
rename from src/AzureIoTHub.Portal.Server/Services/EdgeDevicesService.cs
rename to src/AzureIoTHub.Portal.Server/Services/AzureEdgeDevicesService.cs
index eab9c4e85..3c54c1cfd 100644
--- a/src/AzureIoTHub.Portal.Server/Services/EdgeDevicesService.cs
+++ b/src/AzureIoTHub.Portal.Server/Services/AzureEdgeDevicesService.cs
@@ -4,30 +4,20 @@
 namespace AzureIoTHub.Portal.Server.Services
 {
     using System;
-    using System.Collections.Generic;
-    using System.Linq;
-    using System.Linq.Dynamic.Core;
-    using System.Linq.Expressions;
     using System.Threading.Tasks;
     using AutoMapper;
     using AzureIoTHub.Portal.Application.Helpers;
     using AzureIoTHub.Portal.Application.Managers;
     using AzureIoTHub.Portal.Application.Services;
     using AzureIoTHub.Portal.Domain;
-    using AzureIoTHub.Portal.Domain.Entities;
-    using AzureIoTHub.Portal.Domain.Exceptions;
     using AzureIoTHub.Portal.Domain.Repositories;
-    using AzureIoTHub.Portal.Infrastructure.Repositories;
+    using AzureIoTHub.Portal.Infrastructure.Helpers;
     using AzureIoTHub.Portal.Models.v10;
-    using AzureIoTHub.Portal.Shared.Models.v1._0;
-    using AzureIoTHub.Portal.Shared.Models.v10.Filters;
-    using AzureIoTHub.Portal.Shared.Models.v10;
     using Microsoft.Azure.Devices;
     using Microsoft.Azure.Devices.Shared;
-    using Microsoft.EntityFrameworkCore;
     using Newtonsoft.Json;
 
-    public class EdgeDevicesService : IEdgeDevicesService
+    public class AzureEdgeDevicesService : EdgeDevicesServiceBase, IEdgeDevicesService
     {
         /// <summary>
         /// The device idevice service.
@@ -42,8 +32,13 @@ public class EdgeDevicesService : IEdgeDevicesService
         private readonly IDeviceTagValueRepository deviceTagValueRepository;
         private readonly ILabelRepository labelRepository;
         private readonly IDeviceModelImageManager deviceModelImageManager;
+        private readonly IEdgeEnrollementHelper edgeEnrollementHelper;
 
-        public EdgeDevicesService(
+        private readonly ConfigHandler configHandler;
+
+        public AzureEdgeDevicesService(
+            ConfigHandler configHandler,
+            IEdgeEnrollementHelper edgeEnrollementHelper,
             IExternalDeviceService externalDevicesService,
             IDeviceTagService deviceTagService,
             IMapper mapper,
@@ -52,7 +47,10 @@ public EdgeDevicesService(
             IDeviceTagValueRepository deviceTagValueRepository,
             ILabelRepository labelRepository,
             IDeviceModelImageManager deviceModelImageManager)
+            : base(deviceTagService, edgeDeviceRepository, mapper, deviceModelImageManager, deviceTagValueRepository, labelRepository)
         {
+            this.configHandler = configHandler;
+            this.edgeEnrollementHelper = edgeEnrollementHelper;
             this.externalDevicesService = externalDevicesService;
             this.deviceTagService = deviceTagService;
             this.mapper = mapper;
@@ -63,92 +61,6 @@ public EdgeDevicesService(
             this.deviceModelImageManager = deviceModelImageManager;
         }
 
-        public async Task<PaginatedResult<IoTEdgeListItem>> GetEdgeDevicesPage(
-            string searchText = null,
-            bool? searchStatus = null,
-            int pageSize = 10,
-            int pageNumber = 0,
-            string[] orderBy = null,
-            string modelId = null,
-            List<string> labels = default)
-        {
-            var deviceListFilter = new EdgeDeviceListFilter
-            {
-                PageSize = pageSize,
-                PageNumber = pageNumber,
-                IsEnabled = searchStatus,
-                Keyword = searchText,
-                OrderBy = orderBy,
-                ModelId = modelId,
-                Labels = labels
-            };
-
-            var devicePredicate = PredicateBuilder.True<EdgeDevice>();
-
-            if (deviceListFilter.IsEnabled != null)
-            {
-                devicePredicate = devicePredicate.And(device => device.IsEnabled.Equals(deviceListFilter.IsEnabled));
-            }
-
-            if (!string.IsNullOrWhiteSpace(deviceListFilter.ModelId))
-            {
-                devicePredicate = devicePredicate.And(device => device.DeviceModelId.Equals(deviceListFilter.ModelId));
-            }
-
-            if (!string.IsNullOrWhiteSpace(deviceListFilter.Keyword))
-            {
-                devicePredicate = devicePredicate.And(device => device.Id.ToLower().Contains(deviceListFilter.Keyword.ToLower()) || device.Name.ToLower().Contains(deviceListFilter.Keyword.ToLower()));
-            }
-
-            deviceListFilter.Labels?.ForEach(label =>
-            {
-                devicePredicate = devicePredicate.And(device => device.Labels.Any(value => value.Name.Equals(label)) || device.DeviceModel.Labels.Any(value => value.Name.Equals(label)));
-            });
-
-            var paginatedEdgeDevices = await this.edgeDeviceRepository.GetPaginatedListAsync(pageNumber, pageSize, orderBy, devicePredicate, includes: new Expression<Func<EdgeDevice, object>>[] { d => d.Labels, d => d.DeviceModel.Labels });
-            var paginateEdgeDeviceDto = new PaginatedResult<IoTEdgeListItem>
-            {
-                Data = paginatedEdgeDevices.Data.Select(x => this.mapper.Map<IoTEdgeListItem>(x, opts =>
-                {
-                    opts.Items["imageUrl"] = this.deviceModelImageManager.ComputeImageUri(x.DeviceModelId);
-                })).ToList(),
-                TotalCount = paginatedEdgeDevices.TotalCount,
-                CurrentPage = paginatedEdgeDevices.CurrentPage,
-                PageSize = pageSize
-            };
-
-            return new PaginatedResult<IoTEdgeListItem>(paginateEdgeDeviceDto.Data, paginateEdgeDeviceDto.TotalCount);
-        }
-
-        /// <summary>
-        /// Get edge device with its modules.
-        /// </summary>
-        /// <param name="edgeDeviceId">device id.</param>
-        /// <returns>IoTEdgeDevice object.</returns>
-        public async Task<IoTEdgeDevice> GetEdgeDevice(string edgeDeviceId)
-        {
-            var deviceEntity = await this.edgeDeviceRepository.GetByIdAsync(edgeDeviceId, d => d.Tags, d => d.Labels);
-
-            if (deviceEntity is null)
-            {
-                throw new ResourceNotFoundException($"The device with id {edgeDeviceId} doesn't exist");
-            }
-
-            var deviceDto = this.mapper.Map<IoTEdgeDevice>(deviceEntity);
-
-            var deviceTwinWithModules = await this.externalDevicesService.GetDeviceTwinWithModule(edgeDeviceId);
-
-            deviceDto.LastDeployment = await this.externalDevicesService.RetrieveLastConfiguration(deviceTwinWithModules);
-            deviceDto.ImageUrl = this.deviceModelImageManager.ComputeImageUri(deviceDto.ModelId);
-            deviceDto.Modules = DeviceHelper.RetrieveModuleList(deviceTwinWithModules);
-            deviceDto.RuntimeResponse = DeviceHelper.RetrieveRuntimeResponse(deviceTwinWithModules);
-
-            deviceDto.Status = deviceTwinWithModules.Status?.ToString();
-            deviceDto.Tags = FilterDeviceTags(deviceDto);
-
-            return deviceDto;
-        }
-
         /// <summary>
         /// Create a new edge device.
         /// </summary>
@@ -173,19 +85,14 @@ public async Task<IoTEdgeDevice> CreateEdgeDevice(IoTEdgeDevice edgeDevice)
 
             _ = await this.externalDevicesService.CreateDeviceWithTwin(edgeDevice.DeviceId, true, deviceTwin, DeviceStatus.Enabled);
 
-            return await CreateEdgeDeviceInDatabase(edgeDevice);
-        }
-
-        private async Task<IoTEdgeDevice> CreateEdgeDeviceInDatabase(IoTEdgeDevice device)
-        {
-            var edgeDeviceEntity = this.mapper.Map<EdgeDevice>(device);
+            var result = await base.CreateEdgeDeviceInDatabase(edgeDevice);
 
-            await this.edgeDeviceRepository.InsertAsync(edgeDeviceEntity);
             await this.unitOfWork.SaveAsync();
 
-            return device;
+            return result;
         }
 
+
         /// <summary>
         /// Update the edge device ant the twin.
         /// </summary>
@@ -208,67 +115,45 @@ public async Task<IoTEdgeDevice> UpdateEdgeDevice(IoTEdgeDevice edgeDevice)
 
             _ = await this.externalDevicesService.UpdateDeviceTwin(deviceTwin);
 
-            return await UpdateEdgeDeviceInDatabase(edgeDevice);
-        }
-
-        private async Task<IoTEdgeDevice> UpdateEdgeDeviceInDatabase(IoTEdgeDevice device)
-        {
-            var edgeDeviceEntity = await this.edgeDeviceRepository.GetByIdAsync(device.DeviceId, d => d.Tags, d => d.Labels);
-
-            if (edgeDeviceEntity == null)
-            {
-                throw new ResourceNotFoundException($"The device {device.DeviceId} doesn't exist");
-            }
+            var result = await UpdateEdgeDeviceInDatabase(edgeDevice);
 
-            foreach (var deviceTagEntity in edgeDeviceEntity.Tags)
-            {
-                this.deviceTagValueRepository.Delete(deviceTagEntity.Id);
-            }
-
-            foreach (var labelEntity in edgeDeviceEntity.Labels)
-            {
-                this.labelRepository.Delete(labelEntity.Id);
-            }
-
-            _ = this.mapper.Map(device, edgeDeviceEntity);
-
-            this.edgeDeviceRepository.Update(edgeDeviceEntity);
             await this.unitOfWork.SaveAsync();
 
-            return device;
+            return result;
         }
 
+
         public async Task DeleteEdgeDeviceAsync(string deviceId)
         {
             await this.externalDevicesService.DeleteDevice(deviceId);
 
             await DeleteEdgeDeviceInDatabase(deviceId);
+
+            await this.unitOfWork.SaveAsync();
         }
 
-        public async Task DeleteEdgeDeviceInDatabase(string deviceId)
+        /// <summary>
+        /// Get edge device with its modules.
+        /// </summary>
+        /// <param name="edgeDeviceId">device id.</param>
+        /// <returns>IoTEdgeDevice object.</returns>
+        public async Task<IoTEdgeDevice> GetEdgeDevice(string edgeDeviceId)
         {
-            var edgeDeviceEntity = await this.edgeDeviceRepository.GetByIdAsync(deviceId, d => d.Tags, d => d.Labels);
+            var deviceDto = await base.GetEdgeDevice(edgeDeviceId);
 
-            if (edgeDeviceEntity == null)
-            {
-                return;
-            }
+            var deviceTwinWithModules = await this.externalDevicesService.GetDeviceTwinWithModule(edgeDeviceId);
 
-            foreach (var deviceTagEntity in edgeDeviceEntity.Tags)
-            {
-                this.deviceTagValueRepository.Delete(deviceTagEntity.Id);
-            }
+            deviceDto.LastDeployment = await this.externalDevicesService.RetrieveLastConfiguration(deviceTwinWithModules);
 
-            foreach (var labelEntity in edgeDeviceEntity.Labels)
-            {
-                this.labelRepository.Delete(labelEntity.Id);
-            }
+            deviceDto.Modules = DeviceHelper.RetrieveModuleList(deviceTwinWithModules);
+            deviceDto.RuntimeResponse = DeviceHelper.RetrieveRuntimeResponse(deviceTwinWithModules);
 
-            this.edgeDeviceRepository.Delete(deviceId);
+            deviceDto.Status = deviceTwinWithModules.Status?.ToString();
 
-            await this.unitOfWork.SaveAsync();
+            return deviceDto;
         }
 
+
         /// <summary>
         /// Executes the module method on the IoT Edge device.
         /// </summary>
@@ -331,24 +216,13 @@ public async Task<C2Dresult> ExecuteModuleCommand(string deviceId, string module
             };
         }
 
-        public async Task<IEnumerable<LabelDto>> GetAvailableLabels()
+        public async Task<string> GetEdgeDeviceEnrollementScript(string deviceId, string templateName)
         {
-            var edgeDevices = await this.edgeDeviceRepository.GetAllAsync(includes: new Expression<Func<EdgeDevice, object>>[] { d => d.Labels, d => d.DeviceModel.Labels });
-
-            var labels = edgeDevices.SelectMany(edgeDevice => edgeDevice.Labels)
-                .Union(edgeDevices.SelectMany(edgeDevice => edgeDevice.DeviceModel.Labels));
+            var template = edgeEnrollementHelper.GetEdgeEnrollementTemplate($"{configHandler.CloudProvider}.{templateName}");
 
-            return this.mapper.Map<List<LabelDto>>(labels);
-        }
-
-        private Dictionary<string, string> FilterDeviceTags(IoTEdgeDevice device)
-        {
-            var tags = this.deviceTagService.GetAllTagsNames().ToList();
+            var device = await this.edgeDeviceRepository.GetByIdAsync(deviceId);
 
-            return device.Tags.Where(pair => tags.Contains(pair.Key))
-                .Union(tags.Where(s => !device.Tags.ContainsKey(s))
-                    .Select(s => new KeyValuePair<string, string>(s, string.Empty)))
-                .ToDictionary(pair => pair.Key, pair => pair.Value);
+            return await this.externalDevicesService.CreateEnrollementScript(template, device);
         }
     }
 }
diff --git a/src/AzureIoTHub.Portal.Server/Services/EdgeDevicesServiceBase.cs b/src/AzureIoTHub.Portal.Server/Services/EdgeDevicesServiceBase.cs
new file mode 100644
index 000000000..25cecc6c3
--- /dev/null
+++ b/src/AzureIoTHub.Portal.Server/Services/EdgeDevicesServiceBase.cs
@@ -0,0 +1,205 @@
+// Copyright (c) CGI France. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+namespace AzureIoTHub.Portal.Server.Services
+{
+    using System;
+    using System.Collections.Generic;
+    using System.Linq;
+    using System.Linq.Expressions;
+    using System.Threading.Tasks;
+    using AutoMapper;
+    using AzureIoTHub.Portal.Application.Managers;
+    using AzureIoTHub.Portal.Application.Services;
+    using AzureIoTHub.Portal.Domain.Entities;
+    using AzureIoTHub.Portal.Domain.Exceptions;
+    using AzureIoTHub.Portal.Domain.Repositories;
+    using AzureIoTHub.Portal.Infrastructure.Repositories;
+    using AzureIoTHub.Portal.Models.v10;
+    using AzureIoTHub.Portal.Shared.Models.v1._0;
+    using AzureIoTHub.Portal.Shared.Models.v10;
+    using AzureIoTHub.Portal.Shared.Models.v10.Filters;
+
+    public abstract class EdgeDevicesServiceBase
+    {
+        private readonly IDeviceTagService deviceTagService;
+
+        private readonly IEdgeDeviceRepository edgeDeviceRepository;
+        private readonly IMapper mapper;
+        private readonly IDeviceModelImageManager deviceModelImageManager;
+        private readonly IDeviceTagValueRepository deviceTagValueRepository;
+        private readonly ILabelRepository labelRepository;
+
+        protected EdgeDevicesServiceBase(
+            IDeviceTagService deviceTagService,
+            IEdgeDeviceRepository edgeDeviceRepository,
+            IMapper mapper,
+            IDeviceModelImageManager deviceModelImageManager,
+            IDeviceTagValueRepository deviceTagValueRepository,
+            ILabelRepository labelRepository)
+        {
+            this.deviceTagService = deviceTagService;
+            this.edgeDeviceRepository = edgeDeviceRepository;
+            this.mapper = mapper;
+            this.deviceModelImageManager = deviceModelImageManager;
+            this.deviceTagValueRepository = deviceTagValueRepository;
+            this.labelRepository = labelRepository;
+        }
+
+        public async Task<PaginatedResult<IoTEdgeListItem>> GetEdgeDevicesPage(
+                string searchText = null,
+                bool? searchStatus = null,
+                int pageSize = 10,
+                int pageNumber = 0,
+                string[] orderBy = null,
+                string modelId = null,
+                List<string> labels = default)
+        {
+            var deviceListFilter = new EdgeDeviceListFilter
+            {
+                PageSize = pageSize,
+                PageNumber = pageNumber,
+                IsEnabled = searchStatus,
+                Keyword = searchText,
+                OrderBy = orderBy,
+                ModelId = modelId,
+                Labels = labels
+            };
+
+            var devicePredicate = PredicateBuilder.True<EdgeDevice>();
+
+            if (deviceListFilter.IsEnabled != null)
+            {
+                devicePredicate = devicePredicate.And(device => device.IsEnabled.Equals(deviceListFilter.IsEnabled));
+            }
+
+            if (!string.IsNullOrWhiteSpace(deviceListFilter.ModelId))
+            {
+                devicePredicate = devicePredicate.And(device => device.DeviceModelId.Equals(deviceListFilter.ModelId));
+            }
+
+            if (!string.IsNullOrWhiteSpace(deviceListFilter.Keyword))
+            {
+                devicePredicate = devicePredicate.And(device => device.Id.ToLower().Contains(deviceListFilter.Keyword.ToLower()) || device.Name.ToLower().Contains(deviceListFilter.Keyword.ToLower()));
+            }
+
+            deviceListFilter.Labels?.ForEach(label =>
+            {
+                devicePredicate = devicePredicate.And(device => device.Labels.Any(value => value.Name.Equals(label)) || device.DeviceModel.Labels.Any(value => value.Name.Equals(label)));
+            });
+
+            var paginatedEdgeDevices = await this.edgeDeviceRepository.GetPaginatedListAsync(pageNumber, pageSize, orderBy, devicePredicate, includes: new Expression<Func<EdgeDevice, object>>[] { d => d.Labels, d => d.DeviceModel.Labels });
+            var paginateEdgeDeviceDto = new PaginatedResult<IoTEdgeListItem>
+            {
+                Data = paginatedEdgeDevices.Data.Select(x => this.mapper.Map<IoTEdgeListItem>(x, opts =>
+                {
+                    opts.Items["imageUrl"] = this.deviceModelImageManager.ComputeImageUri(x.DeviceModelId);
+                })).ToList(),
+                TotalCount = paginatedEdgeDevices.TotalCount,
+                CurrentPage = paginatedEdgeDevices.CurrentPage,
+                PageSize = pageSize
+            };
+
+            return new PaginatedResult<IoTEdgeListItem>(paginateEdgeDeviceDto.Data, paginateEdgeDeviceDto.TotalCount);
+        }
+
+        /// <summary>
+        /// Get edge device with its modules.
+        /// </summary>
+        /// <param name="edgeDeviceId">device id.</param>
+        /// <returns>IoTEdgeDevice object.</returns>
+        protected async Task<IoTEdgeDevice> GetEdgeDevice(string edgeDeviceId)
+        {
+            var deviceEntity = await this.edgeDeviceRepository.GetByIdAsync(edgeDeviceId, d => d.Tags, d => d.Labels);
+
+            if (deviceEntity is null)
+            {
+                throw new ResourceNotFoundException($"The device with id {edgeDeviceId} doesn't exist");
+            }
+
+            var deviceDto = this.mapper.Map<IoTEdgeDevice>(deviceEntity);
+            deviceDto.ImageUrl = this.deviceModelImageManager.ComputeImageUri(deviceDto.ModelId);
+            deviceDto.Tags = FilterDeviceTags(deviceDto);
+
+            return deviceDto;
+
+        }
+
+        protected async Task<IoTEdgeDevice> CreateEdgeDeviceInDatabase(IoTEdgeDevice device)
+        {
+            var edgeDeviceEntity = this.mapper.Map<EdgeDevice>(device);
+
+            await this.edgeDeviceRepository.InsertAsync(edgeDeviceEntity);
+
+            return device;
+        }
+
+        public async Task<IEnumerable<LabelDto>> GetAvailableLabels()
+        {
+            var edgeDevices = await this.edgeDeviceRepository.GetAllAsync(includes: new Expression<Func<EdgeDevice, object>>[] { d => d.Labels, d => d.DeviceModel.Labels });
+
+            var labels = edgeDevices.SelectMany(edgeDevice => edgeDevice.Labels)
+                .Union(edgeDevices.SelectMany(edgeDevice => edgeDevice.DeviceModel.Labels));
+
+            return this.mapper.Map<List<LabelDto>>(labels);
+        }
+
+        protected async Task<IoTEdgeDevice> UpdateEdgeDeviceInDatabase(IoTEdgeDevice device)
+        {
+            var edgeDeviceEntity = await this.edgeDeviceRepository.GetByIdAsync(device.DeviceId, d => d.Tags, d => d.Labels);
+
+            if (edgeDeviceEntity == null)
+            {
+                throw new ResourceNotFoundException($"The device {device.DeviceId} doesn't exist");
+            }
+
+            foreach (var deviceTagEntity in edgeDeviceEntity.Tags)
+            {
+                this.deviceTagValueRepository.Delete(deviceTagEntity.Id);
+            }
+
+            foreach (var labelEntity in edgeDeviceEntity.Labels)
+            {
+                this.labelRepository.Delete(labelEntity.Id);
+            }
+
+            _ = this.mapper.Map(device, edgeDeviceEntity);
+
+            this.edgeDeviceRepository.Update(edgeDeviceEntity);
+
+            return device;
+        }
+
+        protected async Task DeleteEdgeDeviceInDatabase(string deviceId)
+        {
+            var edgeDeviceEntity = await this.edgeDeviceRepository.GetByIdAsync(deviceId, d => d.Tags, d => d.Labels);
+
+            if (edgeDeviceEntity == null)
+            {
+                return;
+            }
+
+            foreach (var deviceTagEntity in edgeDeviceEntity.Tags)
+            {
+                this.deviceTagValueRepository.Delete(deviceTagEntity.Id);
+            }
+
+            foreach (var labelEntity in edgeDeviceEntity.Labels)
+            {
+                this.labelRepository.Delete(labelEntity.Id);
+            }
+
+            this.edgeDeviceRepository.Delete(deviceId);
+        }
+
+        private Dictionary<string, string> FilterDeviceTags(IoTEdgeDevice device)
+        {
+            var tags = this.deviceTagService.GetAllTagsNames().ToList();
+
+            return device.Tags.Where(pair => tags.Contains(pair.Key))
+                .Union(tags.Where(s => !device.Tags.ContainsKey(s))
+                    .Select(s => new KeyValuePair<string, string>(s, string.Empty)))
+                .ToDictionary(pair => pair.Key, pair => pair.Value);
+        }
+    }
+}
diff --git a/src/AzureIoTHub.Portal.Server/Services/ExternalDeviceService.cs b/src/AzureIoTHub.Portal.Server/Services/ExternalDeviceService.cs
index 8559fed76..d715c3a18 100644
--- a/src/AzureIoTHub.Portal.Server/Services/ExternalDeviceService.cs
+++ b/src/AzureIoTHub.Portal.Server/Services/ExternalDeviceService.cs
@@ -1,711 +1,712 @@
-// Copyright (c) CGI France. All rights reserved.
-// Licensed under the MIT license. See LICENSE file in the project root for full license information.
-
-namespace AzureIoTHub.Portal.Server.Services
-{
-    using System;
-    using System.Collections.Generic;
-    using System.Diagnostics;
-    using System.Globalization;
-    using System.Linq;
-    using System.Text;
-    using System.Threading.Tasks;
-    using Azure;
-    using AzureIoTHub.Portal.Application.Helpers;
-    using AzureIoTHub.Portal.Application.Providers;
-    using AzureIoTHub.Portal.Application.Services;
-    using AzureIoTHub.Portal.Domain.Exceptions;
-    using AzureIoTHub.Portal.Domain.Repositories;
-    using AzureIoTHub.Portal.Domain.Shared;
-    using AzureIoTHub.Portal.Shared.Constants;
-    using Microsoft.Azure.Devices;
-    using Microsoft.Azure.Devices.Common.Exceptions;
-    using Microsoft.Azure.Devices.Shared;
-    using Microsoft.Extensions.Logging;
-    using Models.v10;
-    using Newtonsoft.Json;
-    using Newtonsoft.Json.Linq;
-
-    public class ExternalDeviceService : IExternalDeviceService
-    {
-        private readonly RegistryManager registryManager;
-        private readonly ServiceClient serviceClient;
-        private readonly ILogger<ExternalDeviceService> log;
-        private readonly IDeviceRegistryProvider deviceRegistryProvider;
-        private readonly IDeviceModelRepository deviceModelRepository;
-
-        public ExternalDeviceService(
-            ILogger<ExternalDeviceService> log,
-            RegistryManager registryManager,
-            ServiceClient serviceClient,
-            IDeviceModelRepository deviceModelRepository,
-            IDeviceRegistryProvider deviceRegistryProvider)
-        {
-            this.log = log;
-            this.serviceClient = serviceClient;
-            this.deviceModelRepository = deviceModelRepository;
-            this.deviceRegistryProvider = deviceRegistryProvider;
-            this.registryManager = registryManager;
-        }
-
-        /// <summary>
-        /// this function return a list of all edge device without modules.
-        /// </summary>
-        /// <param name="continuationToken"></param>
-        /// <param name="searchText"></param>
-        /// <param name="searchStatus"></param>
-        /// <param name="searchType"></param>
-        /// <param name="pageSize"></param>
-        /// <returns>IEnumerable twin.</returns>
-        public async Task<PaginationResult<Twin>> GetAllEdgeDevice(
-            string continuationToken = null,
-            string searchText = null,
-            bool? searchStatus = null,
-            string searchType = null,
-            int pageSize = 10)
-        {
-            var filter = "WHERE devices.capabilities.iotEdge = true";
-
-            if (searchStatus != null)
-            {
-                filter += $" AND status = '{(searchStatus.Value ? "enabled" : "disabled")}'";
-            }
-
-            if (!string.IsNullOrWhiteSpace(searchText))
-            {
-#pragma warning disable CA1308 // Normalize strings to uppercase
-                filter += $" AND (STARTSWITH(deviceId, '{searchText}') OR (is_defined(tags.deviceName) AND STARTSWITH(tags.deviceName, '{searchText}')))";
-#pragma warning restore CA1308 // Normalize strings to uppercase
-            }
-
-            if (!string.IsNullOrWhiteSpace(searchType))
-            {
-                filter += $" AND devices.tags.type = '{searchType}'";
-            }
-
-            var emptyResult = new PaginationResult<Twin>
-            {
-                Items = Enumerable.Empty<Twin>(),
-                TotalItems = 0
-            };
-
-            IEnumerable<string> count;
-
-            try
-            {
-                count = await this.registryManager
-                    .CreateQuery($"SELECT COUNT() as totalNumber FROM devices {filter}")
-                    .GetNextAsJsonAsync();
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException("Unable to get the count of edge devices", e);
-            }
-
-            if (!JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result))
-            {
-                return emptyResult;
-            }
-
-            if (result.Value<int>() == 0)
-            {
-                return emptyResult;
-            }
-            try
-            {
-                var response = await this.registryManager
-                .CreateQuery($"SELECT * FROM devices { filter }", pageSize)
-                .GetNextAsTwinAsync(new QueryOptions
-                {
-                    ContinuationToken = continuationToken
-                });
-
-
-                return new PaginationResult<Twin>
-
-                {
-                    Items = response,
-                    TotalItems = result.Value<int>(),
-                    NextPage = response.ContinuationToken
-                };
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException("Unable to get edge devices", e);
-            }
-        }
-
-        /// <summary>
-        /// this function return a list of all device exept edge device.
-        /// </summary>
-        /// <param name="continuationToken"></param>
-        /// <param name="filterDeviceType"></param>
-        /// <param name="excludeDeviceType"></param>
-        /// <param name="searchText"></param>
-        /// <param name="searchStatus"></param>
-        /// <param name="searchState"></param>
-        /// <param name="searchTags"></param>
-        /// <param name="pageSize"></param>
-        /// <returns>IEnumerable twin.</returns>
-        public async Task<PaginationResult<Twin>> GetAllDevice(
-            string continuationToken = null,
-            string filterDeviceType = null,
-            string excludeDeviceType = null,
-            string searchText = null,
-            bool? searchStatus = null,
-            bool? searchState = null,
-            Dictionary<string, string> searchTags = null,
-            int pageSize = 10)
-        {
-            var filter = "WHERE devices.capabilities.iotEdge = false";
-
-            if (!string.IsNullOrWhiteSpace(filterDeviceType))
-            {
-                filter += $" AND devices.tags.deviceType = '{filterDeviceType}'";
-            }
-
-            if (!string.IsNullOrWhiteSpace(excludeDeviceType))
-            {
-                filter += $" AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != '{excludeDeviceType}')";
-            }
-
-            if (!string.IsNullOrWhiteSpace(searchText))
-            {
-#pragma warning disable CA1308 // Normalize strings to uppercase
-                filter += $" AND (STARTSWITH(deviceId, '{searchText}') OR (is_defined(tags.deviceName) AND STARTSWITH(tags.deviceName, '{searchText}')))";
-#pragma warning restore CA1308 // Normalize strings to uppercase
-            }
-
-            if (searchTags != null)
-            {
-                var tagsFilterBuilder = new StringBuilder();
-
-                foreach (var item in searchTags)
-                {
-                    _ = tagsFilterBuilder.Append(CultureInfo.InvariantCulture, $" AND is_defined(tags.{item.Key}) AND STARTSWITH(tags.{item.Key}, '{item.Value}')");
-                }
-
-                filter += tagsFilterBuilder;
-            }
-
-            if (searchStatus != null)
-            {
-                filter += $" AND status = '{(searchStatus.Value ? "enabled" : "disabled")}'";
-            }
-
-            if (searchState != null)
-            {
-                filter += $" AND connectionState = '{(searchState.Value ? "Connected" : "Disconnected")}'";
-            }
-
-            var emptyResult = new PaginationResult<Twin>
-            {
-                Items = Enumerable.Empty<Twin>(),
-                TotalItems = 0
-            };
-
-            var stopWatch = Stopwatch.StartNew();
-
-            IEnumerable<string> count;
-
-            try
-            {
-                count = await this.registryManager
-                    .CreateQuery($"SELECT COUNT() as totalNumber FROM devices {filter}")
-                    .GetNextAsJsonAsync();
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException("Unable to get devices count", e);
-            }
-
-            this.log.LogDebug($"Count obtained in {stopWatch.Elapsed}");
-
-            if (!JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result))
-            {
-                return emptyResult;
-            }
-
-            if (result.Value<int>() == 0)
-            {
-                return emptyResult;
-            }
-
-            stopWatch.Restart();
-
-            try
-            {
-                var query = this.registryManager
-                    .CreateQuery($"SELECT * FROM devices { filter }", pageSize);
-
-                var response = await query
-                    .GetNextAsTwinAsync(new QueryOptions
-                    {
-                        ContinuationToken = continuationToken
-                    });
-
-                this.log.LogDebug($"Data obtained in {stopWatch.Elapsed}");
-
-                return new PaginationResult<Twin>
-                {
-                    Items = response,
-                    TotalItems = result.Value<int>(),
-                    NextPage = response.ContinuationToken
-                };
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Unable to query devices", e);
-            }
-        }
-
-        /// <summary>
-        /// this function return the device we want with the registry manager.
-        /// </summary>
-        /// <param name="deviceId">device id.</param>
-        /// <returns>Device.</returns>
-        public async Task<Device> GetDevice(string deviceId)
-        {
-            try
-            {
-                return await this.registryManager.GetDeviceAsync(deviceId);
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Unable to get device with id {deviceId}", e);
-            }
-        }
-
-        /// <summary>
-        /// this function use the registry manager to find the twin
-        /// of a device.
-        /// </summary>
-        /// <param name="deviceId">id of the device.</param>
-        /// <returns>Twin of a device.</returns>
-        public async Task<Twin> GetDeviceTwin(string deviceId)
-        {
-            try
-            {
-                return await this.registryManager.GetTwinAsync(deviceId);
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Unable to get device twin with id {deviceId}", e);
-            }
-        }
-
-        /// <summary>
-        /// this function execute a query with the registry manager to find
-        /// the twin of the device with this module.
-        /// </summary>
-        /// <param name="deviceId">id of the device.</param>
-        /// <returns>Twin of the device.</returns>
-        public async Task<Twin> GetDeviceTwinWithModule(string deviceId)
-        {
-            var devicesWithModules = this.registryManager.CreateQuery($"SELECT * FROM devices.modules WHERE devices.modules.moduleId = '$edgeAgent' AND deviceId in ['{deviceId}']");
-
-            while (devicesWithModules.HasMoreResults)
-            {
-                try
-                {
-                    var devicesTwins = await devicesWithModules.GetNextAsTwinAsync();
-                    return devicesTwins.ElementAt(0);
-                }
-                catch (RequestFailedException e)
-                {
-                    throw new InternalServerErrorException($"Unable to get devices twins", e);
-                }
-            }
-
-            return null;
-        }
-
-        public async Task<Twin> GetDeviceTwinWithEdgeHubModule(string deviceId)
-        {
-            var query = this.registryManager.CreateQuery($"SELECT * FROM devices.modules WHERE devices.modules.moduleId = '$edgeHub' AND deviceId in ['{deviceId}']", 1);
-
-            try
-            {
-                var devicesTwins = await query.GetNextAsTwinAsync();
-                return devicesTwins.ElementAt(0);
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Unable to get devices twins", e);
-            }
-        }
-
-        /// <summary>
-        /// This function create a new device with his twin.
-        /// </summary>
-        /// <param name="deviceId">the device id.</param>
-        /// <param name="isEdge">boolean.</param>
-        /// <param name="twin">the twin of my new device.</param>
-        /// <param name="isEnabled">the status of the device(disabled by default).</param>
-        /// <returns>BulkRegistryOperation.</returns>
-        public async Task<BulkRegistryOperationResult> CreateDeviceWithTwin(string deviceId, bool isEdge, Twin twin, DeviceStatus isEnabled = DeviceStatus.Disabled)
-        {
-            var device = new Device(deviceId)
-            {
-                Capabilities = new DeviceCapabilities { IotEdge = isEdge },
-                Status = isEnabled
-            };
-
-            try
-            {
-                return await this.registryManager.AddDeviceWithTwinAsync(device, twin);
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Unable to create the device twin with id {deviceId}: {e.Message}", e);
-            }
-        }
-
-        /// <summary>
-        /// This function delete a device.
-        /// </summary>
-        /// <param name="deviceId">the device id.</param>
-        public async Task DeleteDevice(string deviceId)
-        {
-            try
-            {
-                await this.registryManager.RemoveDeviceAsync(deviceId);
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Unable to delete the device with id {deviceId}", e);
-            }
-        }
-
-        /// <summary>
-        /// This function update a device.
-        /// </summary>
-        /// <param name="device">the device id.</param>
-        /// <returns>the updated device.</returns>
-        public async Task<Device> UpdateDevice(Device device)
-        {
-            try
-            {
-                return await this.registryManager.UpdateDeviceAsync(device);
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Unable to update the device with id {device.Id}", e);
-            }
-        }
-
-        /// <summary>
-        /// This function update the twin of the device.
-        /// </summary>
-        /// <param name="twin">the new twin.</param>
-        /// <returns>the updated twin.</returns>
-        public async Task<Twin> UpdateDeviceTwin(Twin twin)
-        {
-            ArgumentNullException.ThrowIfNull(twin, nameof(twin));
-
-            try
-            {
-                return await this.registryManager.UpdateTwinAsync(twin.DeviceId, twin, twin.ETag);
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Unable to update the device twin with id {twin.DeviceId}", e);
-            }
-        }
-
-        /// <summary>
-        /// this function execute a methode on the device.
-        /// </summary>
-        /// <param name="deviceId">the device id.</param>
-        /// <param name="method">the cloud to device method.</param>
-        /// <returns>CloudToDeviceMethodResult.</returns>
-        public async Task<CloudToDeviceMethodResult> ExecuteC2DMethod(string deviceId, CloudToDeviceMethod method)
-        {
-            try
-            {
-                return await this.serviceClient.InvokeDeviceMethodAsync(deviceId, "$edgeAgent", method);
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Unable to execute the cloud to device method {method.MethodName} on the device with id {deviceId}", e);
-            }
-        }
-
-        /// <summary>
-        /// C2DMethod for custom command.
-        /// </summary>
-        /// <param name="deviceId">the deviceId.</param>
-        /// <param name="moduleName">the module name.</param>
-        /// <param name="method">the C2DMethod.</param>
-        /// <returns></returns>
-        /// <exception cref="InternalServerErrorException"></exception>
-        public async Task<CloudToDeviceMethodResult> ExecuteCustomCommandC2DMethod(string deviceId, string moduleName, CloudToDeviceMethod method)
-        {
-            try
-            {
-                return await this.serviceClient.InvokeDeviceMethodAsync(deviceId, moduleName, method);
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Unable to execute the cloud to device method {method.MethodName} on the device with id {deviceId}", e);
-            }
-        }
-
-        /// <summary>
-        /// Get edge device logs
-        /// </summary>
-        /// <param name="deviceId">Device Id</param>
-        /// <param name="edgeModule">Edge module</param>
-        /// <returns>Edge device logs</returns>
-        public async Task<IEnumerable<IoTEdgeDeviceLog>> GetEdgeDeviceLogs(string deviceId, IoTEdgeModule edgeModule)
-        {
-            var method = new CloudToDeviceMethod(CloudToDeviceMethods.GetModuleLogs);
-
-            var logs = new List<IoTEdgeDeviceLog>();
-
-            var payload = JsonConvert.SerializeObject(new
-            {
-                schemaVersion = "1.0",
-                items = new[]
-                {
-                    new
-                    {
-                        id = edgeModule.ModuleName,
-                        filter = new
-                        {
-                            tail = 300
-                        }
-                    }
-                },
-                encoding = "none",
-                contentType = "json"
-            });
-
-            _ = method.SetPayloadJson(payload);
-
-            var result = await ExecuteC2DMethod(deviceId, method);
-
-            if (result.Status == 200)
-            {
-                var payloadResponse = result.GetPayloadAsJson();
-
-                if (string.IsNullOrWhiteSpace(payloadResponse))
-                {
-                    this.log.LogInformation($"Payload logs' response of the device {deviceId} is empty");
-                }
-                else
-                {
-                    var payloadResponseAsJson = JsonConvert.DeserializeObject<dynamic[]>(payloadResponse).Single().payload.ToString();
-
-                    logs.AddRange(JsonConvert.DeserializeObject<List<IoTEdgeDeviceLog>>(payloadResponseAsJson));
-                }
-            }
-            else
-            {
-                this.log.LogError($"Unable to retrieve logs of the device {deviceId}, status code: {result.Status}");
-            }
-
-            return logs.OrderByDescending(log => log.TimeStamp);
-        }
-
-        public async Task<int> GetDevicesCount()
-        {
-            try
-            {
-                var count = await this.registryManager
-                    .CreateQuery("SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'LoRa Concentrator')")
-                    .GetNextAsJsonAsync();
-
-                return !JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result) ? 0 : result.Value<int>();
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException("Unable to get devices count", e);
-            }
-        }
-
-        public async Task<int> GetConnectedDevicesCount()
-        {
-            try
-            {
-                var count = await this.registryManager
-                    .CreateQuery("SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND connectionState = 'Connected' AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'LoRa Concentrator')")
-                    .GetNextAsJsonAsync();
-
-                return !JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result) ? 0 : result.Value<int>();
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException("Unable to get connected devices count", e);
-            }
-        }
-
-        public async Task<int> GetEdgeDevicesCount()
-        {
-            try
-            {
-                var count = await this.registryManager
-                    .CreateQuery("SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")
-                    .GetNextAsJsonAsync();
-
-                return !JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result) ? 0 : result.Value<int>();
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException("Unable to get edge devices count", e);
-            }
-        }
-
-        public async Task<int> GetConnectedEdgeDevicesCount()
-        {
-            try
-            {
-                var count = await this.registryManager
-                    .CreateQuery("SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true AND connectionState = 'Connected'")
-                    .GetNextAsJsonAsync();
-
-                return !JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result) ? 0 : result.Value<int>();
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException("Unable to get connected edge devices count", e);
-            }
-        }
-
-        public async Task<int> GetConcentratorsCount()
-        {
-            try
-            {
-                var count = await this.registryManager
-                    .CreateQuery("SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND devices.tags.deviceType = 'LoRa Concentrator'")
-                    .GetNextAsJsonAsync();
-
-                return !JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result) ? 0 : result.Value<int>();
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException("Unable to get connected LoRaWAN concentrators count", e);
-            }
-        }
-
-        public async Task<EnrollmentCredentials> GetEnrollmentCredentials(string deviceId)
-        {
-            var device = await GetDeviceTwin(deviceId);
-
-            if (device == null)
-            {
-                throw new ResourceNotFoundException($"Unable to find the device {deviceId}");
-            }
-
-            if (!device.Tags.Contains("modelId"))
-            {
-                throw new ResourceNotFoundException($"Device {deviceId} has no modelId tag value");
-            }
-
-            try
-            {
-                var model = await this.deviceModelRepository.GetByIdAsync(device.Tags["modelId"].ToString());
-
-                return await this.deviceRegistryProvider.GetEnrollmentCredentialsAsync(deviceId, model.Name);
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Unable to get model of the device with id {deviceId}: {e.Message}", e);
-            }
-        }
-
-        /// <summary>
-        /// Gets the IoT Edge device enrollement credentials.
-        /// </summary>
-        /// <param name="edgeDeviceId">the edge device id.</param>
-        /// <returns>Enrollment credentials.</returns>
-        /// <exception cref="ResourceNotFoundException"></exception>
-        public async Task<EnrollmentCredentials> GetEdgeDeviceCredentials(string edgeDeviceId)
-        {
-            var deviceTwin = await GetDeviceTwin(edgeDeviceId);
-
-            if (deviceTwin == null)
-            {
-                throw new ResourceNotFoundException($"IoT Edge {edgeDeviceId} doesn't exist.");
-            }
-
-            var modelId = DeviceHelper.RetrieveTagValue(deviceTwin, nameof(IoTEdgeDevice.ModelId));
-
-            return await this.deviceRegistryProvider.GetEnrollmentCredentialsAsync(edgeDeviceId, modelId);
-        }
-
-        /// <summary>
-        /// Retrieves the last configuration of the IoT Edge.
-        /// </summary>
-        /// <param name="twin">The twin.</param>
-        public async Task<ConfigItem> RetrieveLastConfiguration(Twin twin)
-        {
-            var item = new ConfigItem();
-
-            if (twin.Configurations?.Count > 0)
-            {
-                foreach (var config in twin.Configurations)
-                {
-                    var confObj = await this.registryManager.GetConfigurationAsync(config.Key);
-
-                    if (item.DateCreation < confObj.CreatedTimeUtc && config.Value.Status == ConfigurationStatus.Applied)
-                    {
-                        item.Name = config.Key;
-                        item.DateCreation = confObj.CreatedTimeUtc;
-                        item.Status = nameof(ConfigurationStatus.Applied);
-                    }
-                }
-                return item;
-            }
-            return null;
-        }
-
-        public async Task<Twin> CreateNewTwinFromDeviceId(string deviceId)
-        {
-            var existingDevice = await this.GetDevice(deviceId);
-            if (existingDevice != null)
-            {
-                throw new DeviceAlreadyExistsException($"The device with ID {deviceId} already exists");
-            }
-
-            // Create a new Twin from the form's fields.
-            return new Twin
-            {
-                DeviceId = deviceId
-            };
-        }
-
-        public async Task<List<string>> GetAllGatewayID()
-        {
-            try
-            {
-                var query = this.registryManager.CreateQuery($"SELECT DeviceID FROM devices.modules WHERE devices.modules.moduleId = 'LoRaWanNetworkSrvModule'");
-                var list = new List<string>();
-
-                var value = (await query.GetNextAsJsonAsync()).ToList();
-                list.AddRange(value.Select(x => JObject.Parse(x)["deviceId"]?.ToString()));
-
-                return list;
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Failed to parse device identifier", e);
-            }
-        }
-
-        public async Task<IEnumerable<string>> GetDevicesToExport()
-        {
-            try
-            {
-                var filter = "WHERE (NOT IS_DEFINED (tags.deviceType) OR tags.deviceType <> 'LoRa Concentrator') AND (capabilities.iotEdge = false)";
-                var query = this.registryManager.CreateQuery($"SELECT deviceId, tags, properties.desired FROM devices { filter }");
-                var response = await query.GetNextAsJsonAsync();
-                return response;
-            }
-            catch (RequestFailedException e)
-            {
-                throw new InternalServerErrorException($"Failed to query devices to export", e);
-            }
+// Copyright (c) CGI France. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+namespace AzureIoTHub.Portal.Server.Services
+{
+    using System;
+    using System.Collections.Generic;
+    using System.Diagnostics;
+    using System.Globalization;
+    using System.Linq;
+    using System.Text;
+    using System.Threading.Tasks;
+    using Application.Helpers;
+    using Application.Providers;
+    using Application.Services;
+    using Azure;
+    using Domain.Exceptions;
+    using Domain.Repositories;
+    using Domain.Shared;
+    using Microsoft.Azure.Devices;
+    using Microsoft.Azure.Devices.Common.Exceptions;
+    using Microsoft.Azure.Devices.Shared;
+    using Microsoft.Extensions.Logging;
+    using Models.v10;
+    using Newtonsoft.Json;
+    using Newtonsoft.Json.Linq;
+    using Shared.Constants;
+    using Shared.Models.v10;
+
+    public class ExternalDeviceService : IExternalDeviceService
+    {
+        private readonly RegistryManager registryManager;
+        private readonly ServiceClient serviceClient;
+        private readonly ILogger<ExternalDeviceService> log;
+        private readonly IDeviceRegistryProvider deviceRegistryProvider;
+        private readonly IDeviceModelRepository deviceModelRepository;
+
+        public ExternalDeviceService(
+            ILogger<ExternalDeviceService> log,
+            RegistryManager registryManager,
+            ServiceClient serviceClient,
+            IDeviceModelRepository deviceModelRepository,
+            IDeviceRegistryProvider deviceRegistryProvider)
+        {
+            this.log = log;
+            this.serviceClient = serviceClient;
+            this.deviceModelRepository = deviceModelRepository;
+            this.deviceRegistryProvider = deviceRegistryProvider;
+            this.registryManager = registryManager;
+        }
+
+        /// <summary>
+        /// this function return a list of all edge device without modules.
+        /// </summary>
+        /// <param name="continuationToken"></param>
+        /// <param name="searchText"></param>
+        /// <param name="searchStatus"></param>
+        /// <param name="searchType"></param>
+        /// <param name="pageSize"></param>
+        /// <returns>IEnumerable twin.</returns>
+        public async Task<PaginationResult<Twin>> GetAllEdgeDevice(
+            string continuationToken = null,
+            string searchText = null,
+            bool? searchStatus = null,
+            string searchType = null,
+            int pageSize = 10)
+        {
+            var filter = "WHERE devices.capabilities.iotEdge = true";
+
+            if (searchStatus != null)
+            {
+                filter += $" AND status = '{(searchStatus.Value ? "enabled" : "disabled")}'";
+            }
+
+            if (!string.IsNullOrWhiteSpace(searchText))
+            {
+#pragma warning disable CA1308 // Normalize strings to uppercase
+                filter += $" AND (STARTSWITH(deviceId, '{searchText}') OR (is_defined(tags.deviceName) AND STARTSWITH(tags.deviceName, '{searchText}')))";
+#pragma warning restore CA1308 // Normalize strings to uppercase
+            }
+
+            if (!string.IsNullOrWhiteSpace(searchType))
+            {
+                filter += $" AND devices.tags.type = '{searchType}'";
+            }
+
+            var emptyResult = new PaginationResult<Twin>
+            {
+                Items = Enumerable.Empty<Twin>(),
+                TotalItems = 0
+            };
+
+            IEnumerable<string> count;
+
+            try
+            {
+                count = await this.registryManager
+                    .CreateQuery($"SELECT COUNT() as totalNumber FROM devices {filter}")
+                    .GetNextAsJsonAsync();
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException("Unable to get the count of edge devices", e);
+            }
+
+            if (!JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result))
+            {
+                return emptyResult;
+            }
+
+            if (result.Value<int>() == 0)
+            {
+                return emptyResult;
+            }
+            try
+            {
+                var response = await this.registryManager
+                .CreateQuery($"SELECT * FROM devices { filter }", pageSize)
+                .GetNextAsTwinAsync(new QueryOptions
+                {
+                    ContinuationToken = continuationToken
+                });
+
+
+                return new PaginationResult<Twin>
+
+                {
+                    Items = response,
+                    TotalItems = result.Value<int>(),
+                    NextPage = response.ContinuationToken
+                };
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException("Unable to get edge devices", e);
+            }
+        }
+
+        /// <summary>
+        /// this function return a list of all device exept edge device.
+        /// </summary>
+        /// <param name="continuationToken"></param>
+        /// <param name="filterDeviceType"></param>
+        /// <param name="excludeDeviceType"></param>
+        /// <param name="searchText"></param>
+        /// <param name="searchStatus"></param>
+        /// <param name="searchState"></param>
+        /// <param name="searchTags"></param>
+        /// <param name="pageSize"></param>
+        /// <returns>IEnumerable twin.</returns>
+        public async Task<PaginationResult<Twin>> GetAllDevice(
+            string continuationToken = null,
+            string filterDeviceType = null,
+            string excludeDeviceType = null,
+            string searchText = null,
+            bool? searchStatus = null,
+            bool? searchState = null,
+            Dictionary<string, string> searchTags = null,
+            int pageSize = 10)
+        {
+            var filter = "WHERE devices.capabilities.iotEdge = false";
+
+            if (!string.IsNullOrWhiteSpace(filterDeviceType))
+            {
+                filter += $" AND devices.tags.deviceType = '{filterDeviceType}'";
+            }
+
+            if (!string.IsNullOrWhiteSpace(excludeDeviceType))
+            {
+                filter += $" AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != '{excludeDeviceType}')";
+            }
+
+            if (!string.IsNullOrWhiteSpace(searchText))
+            {
+#pragma warning disable CA1308 // Normalize strings to uppercase
+                filter += $" AND (STARTSWITH(deviceId, '{searchText}') OR (is_defined(tags.deviceName) AND STARTSWITH(tags.deviceName, '{searchText}')))";
+#pragma warning restore CA1308 // Normalize strings to uppercase
+            }
+
+            if (searchTags != null)
+            {
+                var tagsFilterBuilder = new StringBuilder();
+
+                foreach (var item in searchTags)
+                {
+                    _ = tagsFilterBuilder.Append(CultureInfo.InvariantCulture, $" AND is_defined(tags.{item.Key}) AND STARTSWITH(tags.{item.Key}, '{item.Value}')");
+                }
+
+                filter += tagsFilterBuilder;
+            }
+
+            if (searchStatus != null)
+            {
+                filter += $" AND status = '{(searchStatus.Value ? "enabled" : "disabled")}'";
+            }
+
+            if (searchState != null)
+            {
+                filter += $" AND connectionState = '{(searchState.Value ? "Connected" : "Disconnected")}'";
+            }
+
+            var emptyResult = new PaginationResult<Twin>
+            {
+                Items = Enumerable.Empty<Twin>(),
+                TotalItems = 0
+            };
+
+            var stopWatch = Stopwatch.StartNew();
+
+            IEnumerable<string> count;
+
+            try
+            {
+                count = await this.registryManager
+                    .CreateQuery($"SELECT COUNT() as totalNumber FROM devices {filter}")
+                    .GetNextAsJsonAsync();
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException("Unable to get devices count", e);
+            }
+
+            this.log.LogDebug($"Count obtained in {stopWatch.Elapsed}");
+
+            if (!JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result))
+            {
+                return emptyResult;
+            }
+
+            if (result.Value<int>() == 0)
+            {
+                return emptyResult;
+            }
+
+            stopWatch.Restart();
+
+            try
+            {
+                var query = this.registryManager
+                    .CreateQuery($"SELECT * FROM devices { filter }", pageSize);
+
+                var response = await query
+                    .GetNextAsTwinAsync(new QueryOptions
+                    {
+                        ContinuationToken = continuationToken
+                    });
+
+                this.log.LogDebug($"Data obtained in {stopWatch.Elapsed}");
+
+                return new PaginationResult<Twin>
+                {
+                    Items = response,
+                    TotalItems = result.Value<int>(),
+                    NextPage = response.ContinuationToken
+                };
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Unable to query devices", e);
+            }
+        }
+
+        /// <summary>
+        /// this function return the device we want with the registry manager.
+        /// </summary>
+        /// <param name="deviceId">device id.</param>
+        /// <returns>Device.</returns>
+        public async Task<Device> GetDevice(string deviceId)
+        {
+            try
+            {
+                return await this.registryManager.GetDeviceAsync(deviceId);
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Unable to get device with id {deviceId}", e);
+            }
+        }
+
+        /// <summary>
+        /// this function use the registry manager to find the twin
+        /// of a device.
+        /// </summary>
+        /// <param name="deviceId">id of the device.</param>
+        /// <returns>Twin of a device.</returns>
+        public async Task<Twin> GetDeviceTwin(string deviceId)
+        {
+            try
+            {
+                return await this.registryManager.GetTwinAsync(deviceId);
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Unable to get device twin with id {deviceId}", e);
+            }
+        }
+
+        /// <summary>
+        /// this function execute a query with the registry manager to find
+        /// the twin of the device with this module.
+        /// </summary>
+        /// <param name="deviceId">id of the device.</param>
+        /// <returns>Twin of the device.</returns>
+        public async Task<Twin> GetDeviceTwinWithModule(string deviceId)
+        {
+            var devicesWithModules = this.registryManager.CreateQuery($"SELECT * FROM devices.modules WHERE devices.modules.moduleId = '$edgeAgent' AND deviceId in ['{deviceId}']");
+
+            while (devicesWithModules.HasMoreResults)
+            {
+                try
+                {
+                    var devicesTwins = await devicesWithModules.GetNextAsTwinAsync();
+                    return devicesTwins.ElementAt(0);
+                }
+                catch (RequestFailedException e)
+                {
+                    throw new InternalServerErrorException($"Unable to get devices twins", e);
+                }
+            }
+
+            return null;
+        }
+
+        public async Task<Twin> GetDeviceTwinWithEdgeHubModule(string deviceId)
+        {
+            var query = this.registryManager.CreateQuery($"SELECT * FROM devices.modules WHERE devices.modules.moduleId = '$edgeHub' AND deviceId in ['{deviceId}']", 1);
+
+            try
+            {
+                var devicesTwins = await query.GetNextAsTwinAsync();
+                return devicesTwins.ElementAt(0);
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Unable to get devices twins", e);
+            }
+        }
+
+        /// <summary>
+        /// This function create a new device with his twin.
+        /// </summary>
+        /// <param name="deviceId">the device id.</param>
+        /// <param name="isEdge">boolean.</param>
+        /// <param name="twin">the twin of my new device.</param>
+        /// <param name="isEnabled">the status of the device(disabled by default).</param>
+        /// <returns>BulkRegistryOperation.</returns>
+        public async Task<BulkRegistryOperationResult> CreateDeviceWithTwin(string deviceId, bool isEdge, Twin twin, DeviceStatus isEnabled = DeviceStatus.Disabled)
+        {
+            var device = new Device(deviceId)
+            {
+                Capabilities = new DeviceCapabilities { IotEdge = isEdge },
+                Status = isEnabled
+            };
+
+            try
+            {
+                return await this.registryManager.AddDeviceWithTwinAsync(device, twin);
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Unable to create the device twin with id {deviceId}: {e.Message}", e);
+            }
+        }
+
+        /// <summary>
+        /// This function delete a device.
+        /// </summary>
+        /// <param name="deviceId">the device id.</param>
+        public async Task DeleteDevice(string deviceId)
+        {
+            try
+            {
+                await this.registryManager.RemoveDeviceAsync(deviceId);
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Unable to delete the device with id {deviceId}", e);
+            }
+        }
+
+        /// <summary>
+        /// This function update a device.
+        /// </summary>
+        /// <param name="device">the device id.</param>
+        /// <returns>the updated device.</returns>
+        public async Task<Device> UpdateDevice(Device device)
+        {
+            try
+            {
+                return await this.registryManager.UpdateDeviceAsync(device);
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Unable to update the device with id {device.Id}", e);
+            }
+        }
+
+        /// <summary>
+        /// This function update the twin of the device.
+        /// </summary>
+        /// <param name="twin">the new twin.</param>
+        /// <returns>the updated twin.</returns>
+        public async Task<Twin> UpdateDeviceTwin(Twin twin)
+        {
+            ArgumentNullException.ThrowIfNull(twin, nameof(twin));
+
+            try
+            {
+                return await this.registryManager.UpdateTwinAsync(twin.DeviceId, twin, twin.ETag);
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Unable to update the device twin with id {twin.DeviceId}", e);
+            }
+        }
+
+        /// <summary>
+        /// this function execute a methode on the device.
+        /// </summary>
+        /// <param name="deviceId">the device id.</param>
+        /// <param name="method">the cloud to device method.</param>
+        /// <returns>CloudToDeviceMethodResult.</returns>
+        public async Task<CloudToDeviceMethodResult> ExecuteC2DMethod(string deviceId, CloudToDeviceMethod method)
+        {
+            try
+            {
+                return await this.serviceClient.InvokeDeviceMethodAsync(deviceId, "$edgeAgent", method);
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Unable to execute the cloud to device method {method.MethodName} on the device with id {deviceId}", e);
+            }
+        }
+
+        /// <summary>
+        /// C2DMethod for custom command.
+        /// </summary>
+        /// <param name="deviceId">the deviceId.</param>
+        /// <param name="moduleName">the module name.</param>
+        /// <param name="method">the C2DMethod.</param>
+        /// <returns></returns>
+        /// <exception cref="InternalServerErrorException"></exception>
+        public async Task<CloudToDeviceMethodResult> ExecuteCustomCommandC2DMethod(string deviceId, string moduleName, CloudToDeviceMethod method)
+        {
+            try
+            {
+                return await this.serviceClient.InvokeDeviceMethodAsync(deviceId, moduleName, method);
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Unable to execute the cloud to device method {method.MethodName} on the device with id {deviceId}", e);
+            }
+        }
+
+        /// <summary>
+        /// Get edge device logs
+        /// </summary>
+        /// <param name="deviceId">Device Id</param>
+        /// <param name="edgeModule">Edge module</param>
+        /// <returns>Edge device logs</returns>
+        public async Task<IEnumerable<IoTEdgeDeviceLog>> GetEdgeDeviceLogs(string deviceId, IoTEdgeModule edgeModule)
+        {
+            var method = new CloudToDeviceMethod(CloudToDeviceMethods.GetModuleLogs);
+
+            var logs = new List<IoTEdgeDeviceLog>();
+
+            var payload = JsonConvert.SerializeObject(new
+            {
+                schemaVersion = "1.0",
+                items = new[]
+                {
+                    new
+                    {
+                        id = edgeModule.ModuleName,
+                        filter = new
+                        {
+                            tail = 300
+                        }
+                    }
+                },
+                encoding = "none",
+                contentType = "json"
+            });
+
+            _ = method.SetPayloadJson(payload);
+
+            var result = await ExecuteC2DMethod(deviceId, method);
+
+            if (result.Status == 200)
+            {
+                var payloadResponse = result.GetPayloadAsJson();
+
+                if (string.IsNullOrWhiteSpace(payloadResponse))
+                {
+                    this.log.LogInformation($"Payload logs' response of the device {deviceId} is empty");
+                }
+                else
+                {
+                    var payloadResponseAsJson = JsonConvert.DeserializeObject<dynamic[]>(payloadResponse).Single().payload.ToString();
+
+                    logs.AddRange(JsonConvert.DeserializeObject<List<IoTEdgeDeviceLog>>(payloadResponseAsJson));
+                }
+            }
+            else
+            {
+                this.log.LogError($"Unable to retrieve logs of the device {deviceId}, status code: {result.Status}");
+            }
+
+            return logs.OrderByDescending(log => log.TimeStamp);
+        }
+
+        public async Task<int> GetDevicesCount()
+        {
+            try
+            {
+                var count = await this.registryManager
+                    .CreateQuery("SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'LoRa Concentrator')")
+                    .GetNextAsJsonAsync();
+
+                return !JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result) ? 0 : result.Value<int>();
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException("Unable to get devices count", e);
+            }
+        }
+
+        public async Task<int> GetConnectedDevicesCount()
+        {
+            try
+            {
+                var count = await this.registryManager
+                    .CreateQuery("SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND connectionState = 'Connected' AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'LoRa Concentrator')")
+                    .GetNextAsJsonAsync();
+
+                return !JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result) ? 0 : result.Value<int>();
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException("Unable to get connected devices count", e);
+            }
+        }
+
+        public async Task<int> GetEdgeDevicesCount()
+        {
+            try
+            {
+                var count = await this.registryManager
+                    .CreateQuery("SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")
+                    .GetNextAsJsonAsync();
+
+                return !JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result) ? 0 : result.Value<int>();
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException("Unable to get edge devices count", e);
+            }
+        }
+
+        public async Task<int> GetConnectedEdgeDevicesCount()
+        {
+            try
+            {
+                var count = await this.registryManager
+                    .CreateQuery("SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true AND connectionState = 'Connected'")
+                    .GetNextAsJsonAsync();
+
+                return !JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result) ? 0 : result.Value<int>();
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException("Unable to get connected edge devices count", e);
+            }
+        }
+
+        public async Task<int> GetConcentratorsCount()
+        {
+            try
+            {
+                var count = await this.registryManager
+                    .CreateQuery("SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND devices.tags.deviceType = 'LoRa Concentrator'")
+                    .GetNextAsJsonAsync();
+
+                return !JObject.Parse(count.Single()).TryGetValue("totalNumber", out var result) ? 0 : result.Value<int>();
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException("Unable to get connected LoRaWAN concentrators count", e);
+            }
+        }
+
+        public async Task<DeviceCredentials> GetDeviceCredentials(string deviceId)
+        {
+            var device = await GetDeviceTwin(deviceId);
+
+            if (device == null)
+            {
+                throw new ResourceNotFoundException($"Unable to find the device {deviceId}");
+            }
+
+            if (!device.Tags.Contains("modelId"))
+            {
+                throw new ResourceNotFoundException($"Device {deviceId} has no modelId tag value");
+            }
+
+            try
+            {
+                var model = await this.deviceModelRepository.GetByIdAsync(device.Tags["modelId"].ToString());
+
+                return await this.deviceRegistryProvider.GetEnrollmentCredentialsAsync(deviceId, model.Name);
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Unable to get model of the device with id {deviceId}: {e.Message}", e);
+            }
+        }
+
+        /// <summary>
+        /// Gets the IoT Edge device enrollement credentials.
+        /// </summary>
+        /// <param name="edgeDeviceId">the edge device id.</param>
+        /// <returns>Enrollment credentials.</returns>
+        /// <exception cref="ResourceNotFoundException"></exception>
+        public async Task<DeviceCredentials> GetEdgeDeviceCredentials(IoTEdgeDevice device)
+        {
+            var deviceTwin = await GetDeviceTwin(device.DeviceId);
+
+            if (deviceTwin == null)
+            {
+                throw new ResourceNotFoundException($"IoT Edge {device.DeviceId} doesn't exist.");
+            }
+
+            var modelId = DeviceHelper.RetrieveTagValue(deviceTwin, nameof(IoTEdgeDevice.ModelId));
+
+            return await this.deviceRegistryProvider.GetEnrollmentCredentialsAsync(device.DeviceId, modelId);
+        }
+
+        /// <summary>
+        /// Retrieves the last configuration of the IoT Edge.
+        /// </summary>
+        /// <param name="twin">The twin.</param>
+        public async Task<ConfigItem> RetrieveLastConfiguration(Twin twin)
+        {
+            var item = new ConfigItem();
+
+            if (twin.Configurations?.Count > 0)
+            {
+                foreach (var config in twin.Configurations)
+                {
+                    var confObj = await this.registryManager.GetConfigurationAsync(config.Key);
+
+                    if (item.DateCreation < confObj.CreatedTimeUtc && config.Value.Status == ConfigurationStatus.Applied)
+                    {
+                        item.Name = config.Key;
+                        item.DateCreation = confObj.CreatedTimeUtc;
+                        item.Status = nameof(ConfigurationStatus.Applied);
+                    }
+                }
+                return item;
+            }
+            return null;
+        }
+
+        public async Task<Twin> CreateNewTwinFromDeviceId(string deviceId)
+        {
+            var existingDevice = await this.GetDevice(deviceId);
+            if (existingDevice != null)
+            {
+                throw new DeviceAlreadyExistsException($"The device with ID {deviceId} already exists");
+            }
+
+            // Create a new Twin from the form's fields.
+            return new Twin
+            {
+                DeviceId = deviceId
+            };
+        }
+
+        public async Task<List<string>> GetAllGatewayID()
+        {
+            try
+            {
+                var query = this.registryManager.CreateQuery($"SELECT DeviceID FROM devices.modules WHERE devices.modules.moduleId = 'LoRaWanNetworkSrvModule'");
+                var list = new List<string>();
+
+                var value = (await query.GetNextAsJsonAsync()).ToList();
+                list.AddRange(value.Select(x => JObject.Parse(x)["deviceId"]?.ToString()));
+
+                return list;
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Failed to parse device identifier", e);
+            }
+        }
+
+        public async Task<IEnumerable<string>> GetDevicesToExport()
+        {
+            try
+            {
+                var filter = "WHERE (NOT IS_DEFINED (tags.deviceType) OR tags.deviceType <> 'LoRa Concentrator') AND (capabilities.iotEdge = false)";
+                var query = this.registryManager.CreateQuery($"SELECT deviceId, tags, properties.desired FROM devices { filter }");
+                var response = await query.GetNextAsJsonAsync();
+                return response;
+            }
+            catch (RequestFailedException e)
+            {
+                throw new InternalServerErrorException($"Failed to query devices to export", e);
+            }
         }
 
         public Task<ExternalDeviceModelDto> CreateDeviceModel(ExternalDeviceModelDto deviceModel)
@@ -717,5 +718,20 @@ public Task DeleteDeviceModel(ExternalDeviceModelDto deviceModel)
         {
             throw new NotImplementedException();
         }
-    }
-}
+
+        public Task<string> CreateEnrollementScript(string template, Domain.Entities.EdgeDevice device)
+        {
+            throw new NotImplementedException();
+        }
+
+        public Task<bool> CreateEdgeDevice(string deviceId)
+        {
+            throw new NotImplementedException();
+        }
+
+        public Task RemoveDeviceCredentials(IoTEdgeDevice device)
+        {
+            throw new NotImplementedException();
+        }
+    }
+}
diff --git a/src/AzureIoTHub.Portal.Server/Startup.cs b/src/AzureIoTHub.Portal.Server/Startup.cs
index efcb84cb2..6db79abcc 100644
--- a/src/AzureIoTHub.Portal.Server/Startup.cs
+++ b/src/AzureIoTHub.Portal.Server/Startup.cs
@@ -26,6 +26,7 @@ namespace AzureIoTHub.Portal.Server
     using Managers;
     using Microsoft.AspNetCore.Authentication.JwtBearer;
     using Microsoft.AspNetCore.Builder;
+    using Microsoft.AspNetCore.DataProtection;
     using Microsoft.AspNetCore.Diagnostics.HealthChecks;
     using Microsoft.AspNetCore.Hosting;
     using Microsoft.AspNetCore.Http;
@@ -81,6 +82,7 @@ public void ConfigureServices(IServiceCollection services)
                     ConfigureServicesAzure(services);
                     break;
                 case CloudProviders.AWS:
+                    ConfigureServicesAws(services);
                     break;
                 // Code line not reachable
                 default:
@@ -300,22 +302,28 @@ Specify the authorization token got from your IDP as a header.
 
             // Add the Quartz.NET hosted service
             _ = services.AddQuartzHostedService(q => q.WaitForJobsToComplete = true);
+
+            _ = services.AddDataProtection()
+                .PersistKeysToDbContext<PortalDbContext>();
         }
 
         private static void ConfigureServicesAzure(IServiceCollection services)
         {
             _ = services.AddTransient<IExportManager, ExportManager>();
-            _ = services.AddTransient<IExternalDeviceService, ExternalDeviceService>();
             _ = services.AddTransient<IConfigService, ConfigService>();
             _ = services.AddTransient<ILoRaWANCommandService, LoRaWANCommandService>();
             _ = services.AddTransient<IEdgeModelService, EdgeModelService>();
             _ = services.AddTransient<ILoRaWANConcentratorService, LoRaWANConcentratorService>();
-            _ = services.AddTransient<IEdgeDevicesService, EdgeDevicesService>();
+            _ = services.AddTransient<IEdgeDevicesService, AzureEdgeDevicesService>();
             _ = services.AddTransient<IDevicePropertyService, DevicePropertyService>();
             _ = services.AddTransient<IDeviceConfigurationsService, DeviceConfigurationsService>();
             _ = services.AddTransient(typeof(IDeviceModelService<,>), typeof(DeviceModelService<,>));
         }
 
+        private static void ConfigureServicesAws(IServiceCollection services)
+        {
+            _ = services.AddTransient<IEdgeDevicesService, AWSEdgeDevicesService>();
+        }
 
         private static void ConfigureIdeasFeature(IServiceCollection services, ConfigHandler configuration)
         {
diff --git a/src/AzureIoTHub.Portal.Shared/Models/v1.0/CertificateCredentials.cs b/src/AzureIoTHub.Portal.Shared/Models/v1.0/CertificateCredentials.cs
new file mode 100644
index 000000000..2e7c3b7b2
--- /dev/null
+++ b/src/AzureIoTHub.Portal.Shared/Models/v1.0/CertificateCredentials.cs
@@ -0,0 +1,27 @@
+// Copyright (c) CGI France. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+namespace AzureIoTHub.Portal.Models.v10
+{
+
+    /// <summary>
+    /// Certificate credentials.
+    /// </summary>
+    public class CertificateCredentials
+    {
+        /// <summary>
+        /// The Certificate Pem
+        /// </summary>
+        public string CertificatePem { get; set; } = default!;
+
+        /// <summary>
+        /// The public key
+        /// </summary>
+        public string PublicKey { get; set; } = default!;
+
+        /// <summary>
+        /// The private key
+        /// </summary>
+        public string PrivateKey { get; set; } = default!;
+    }
+}
diff --git a/src/AzureIoTHub.Portal.Shared/Models/v1.0/DeviceCredentials.cs b/src/AzureIoTHub.Portal.Shared/Models/v1.0/DeviceCredentials.cs
new file mode 100644
index 000000000..869845988
--- /dev/null
+++ b/src/AzureIoTHub.Portal.Shared/Models/v1.0/DeviceCredentials.cs
@@ -0,0 +1,33 @@
+// Copyright (c) CGI France. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+namespace AzureIoTHub.Portal.Shared.Models.v10
+{
+    using Portal.Models.v10;
+
+    public enum AuthenticationMode
+    {
+        SymmetricKey,
+        Certificate
+    }
+
+    public class DeviceCredentials
+    {
+
+        /// <summary>
+        /// The authentication mode (either SymmetricKey or Certificate)
+        /// </summary>
+        public AuthenticationMode AuthenticationMode { get; set; }
+
+        /// <summary>
+        /// The SymmetricCredentials if AuthenticationMode == SymmetricKey
+        /// </summary>
+        public SymmetricCredentials SymmetricCredentials { get; set; }
+
+        /// <summary>
+        /// The CertificateCredentials if AuthenticationMode == Certificate
+        /// </summary>
+        public CertificateCredentials CertificateCredentials { get; set; }
+
+    }
+}
diff --git a/src/AzureIoTHub.Portal.Shared/Models/v1.0/IoTEdgeDevice.cs b/src/AzureIoTHub.Portal.Shared/Models/v1.0/IoTEdgeDevice.cs
index 448abefbd..d40d5f26d 100644
--- a/src/AzureIoTHub.Portal.Shared/Models/v1.0/IoTEdgeDevice.cs
+++ b/src/AzureIoTHub.Portal.Shared/Models/v1.0/IoTEdgeDevice.cs
@@ -16,7 +16,6 @@ public class IoTEdgeDevice
         /// <summary>
         /// The IoT Edge identifier.
         /// </summary>
-        [Required(ErrorMessage = "The device identifier is required.")]
         public string DeviceId { get; set; } = default!;
 
         /// <summary>
diff --git a/src/AzureIoTHub.Portal.Shared/Models/v1.0/EnrollmentCredentials.cs b/src/AzureIoTHub.Portal.Shared/Models/v1.0/SymmetricCredentials.cs
similarity index 95%
rename from src/AzureIoTHub.Portal.Shared/Models/v1.0/EnrollmentCredentials.cs
rename to src/AzureIoTHub.Portal.Shared/Models/v1.0/SymmetricCredentials.cs
index 21b060005..90d26c81e 100644
--- a/src/AzureIoTHub.Portal.Shared/Models/v1.0/EnrollmentCredentials.cs
+++ b/src/AzureIoTHub.Portal.Shared/Models/v1.0/SymmetricCredentials.cs
@@ -3,10 +3,11 @@
 
 namespace AzureIoTHub.Portal.Models.v10
 {
+
     /// <summary>
     /// Enrollment credentials.
     /// </summary>
-    public class EnrollmentCredentials
+    public class SymmetricCredentials
     {
         /// <summary>
         /// The registration identifier.
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Client/Pages/Devices/ConnectionStringDialogTests.cs b/src/AzureIoTHub.Portal.Tests.Unit/Client/Pages/Devices/ConnectionStringDialogTests.cs
index 7c759b676..2d8a8c727 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Client/Pages/Devices/ConnectionStringDialogTests.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Client/Pages/Devices/ConnectionStringDialogTests.cs
@@ -40,7 +40,7 @@ public async Task ConnectionStringDialogMustBeRenderedOnShow()
             var deviceId = Guid.NewGuid().ToString();
 
             _ = this.mockDeviceClientService.Setup(service => service.GetEnrollmentCredentials(deviceId))
-                .ReturnsAsync(new EnrollmentCredentials());
+                .ReturnsAsync(new SymmetricCredentials());
 
             var cut = RenderComponent<MudDialogProvider>();
             var service = Services.GetService<IDialogService>() as DialogService;
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Client/Pages/EdgeDevices/ConnectionStringDialogTests.cs b/src/AzureIoTHub.Portal.Tests.Unit/Client/Pages/EdgeDevices/ConnectionStringDialogTests.cs
index 32820ba2a..145b89675 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Client/Pages/EdgeDevices/ConnectionStringDialogTests.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Client/Pages/EdgeDevices/ConnectionStringDialogTests.cs
@@ -17,6 +17,7 @@ namespace AzureIoTHub.Portal.Tests.Unit.Client.Pages.EdgeDevices
     using Moq;
     using MudBlazor;
     using NUnit.Framework;
+    using AzureIoTHub.Portal.Shared.Constants;
 
     [TestFixture]
     public class ConnectionStringDialogTests : BlazorUnitTest
@@ -32,7 +33,7 @@ public override void Setup()
 
             _ = Services.AddSingleton(this.mockEdgeDeviceClientService.Object);
             _ = Services.AddSingleton<ClipboardService>();
-            _ = Services.AddSingleton(new PortalSettings { IsLoRaSupported = false });
+            _ = Services.AddSingleton(new PortalSettings { IsLoRaSupported = false, CloudProvider = CloudProviders.Azure });
 
             this.dialogService = Services.GetService<IDialogService>() as DialogService;
         }
@@ -44,7 +45,7 @@ public async Task ConnectionStringDialogMustShowEnrollmentCredentials()
             var deviceId = Guid.NewGuid().ToString();
 
             _ = this.mockEdgeDeviceClientService.Setup(service => service.GetEnrollmentCredentials(deviceId))
-                .ReturnsAsync(new EnrollmentCredentials());
+                .ReturnsAsync(new SymmetricCredentials());
 
             var cut = RenderComponent<MudDialogProvider>();
 
@@ -94,13 +95,13 @@ public async Task ConnectionStringDialogMustBeCancelledWhenProblemDetailsOccurs(
         }
 
         [Test]
-        public async Task ConnectionStringDialogMustBeCancelledOnClickOnCancel()
+        public async Task ConnectionStringDialogMustBeClosedOnClickOnOk()
         {
             // Arrange
             var deviceId = Guid.NewGuid().ToString();
 
             _ = this.mockEdgeDeviceClientService.Setup(service => service.GetEnrollmentCredentials(deviceId))
-                .ReturnsAsync(new EnrollmentCredentials());
+                .ReturnsAsync(new SymmetricCredentials());
 
             var cut = RenderComponent<MudDialogProvider>();
 
@@ -115,7 +116,7 @@ public async Task ConnectionStringDialogMustBeCancelledOnClickOnCancel()
 
             // Act
             await cut.InvokeAsync(() => dialogReference = this.dialogService?.Show<ConnectionStringDialog>(string.Empty, parameters));
-            cut.WaitForElement("#cancel").Click();
+            cut.WaitForElement("#ok").Click();
 
             var result = await dialogReference.Result;
 
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Client/Pages/EdgeDevices/CreateEdgeDevicePageTest.cs b/src/AzureIoTHub.Portal.Tests.Unit/Client/Pages/EdgeDevices/CreateEdgeDevicePageTest.cs
index b8ac438b6..5af9eca73 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Client/Pages/EdgeDevices/CreateEdgeDevicePageTest.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Client/Pages/EdgeDevices/CreateEdgeDevicePageTest.cs
@@ -48,6 +48,8 @@ public override void Setup()
             _ = Services.AddSingleton(this.mockSnackbarService.Object);
             _ = Services.AddSingleton(new PortalSettings { CloudProvider = CloudProviders.Azure });
 
+            _ = Services.AddSingleton(new PortalSettings { CloudProvider = CloudProviders.Azure });
+
             _ = Services.AddSingleton<IEdgeDeviceLayoutService, EdgeDeviceLayoutService>();
 
             this.mockNavigationManager = Services.GetRequiredService<FakeNavigationManager>();
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Client/Services/DeviceClientServiceTests.cs b/src/AzureIoTHub.Portal.Tests.Unit/Client/Services/DeviceClientServiceTests.cs
index 2e129b544..5948eae2e 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Client/Services/DeviceClientServiceTests.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Client/Services/DeviceClientServiceTests.cs
@@ -183,7 +183,7 @@ public async Task GetEnrollmentCredentialsShouldReturnEnrollmentCredentials()
         {
             // Arrange
             var deviceId = Fixture.Create<string>();
-            var expectedEnrollmentCredentials = Fixture.Create<EnrollmentCredentials>();
+            var expectedEnrollmentCredentials = Fixture.Create<SymmetricCredentials>();
 
             _ = MockHttpClient.When(HttpMethod.Get, $"/api/devices/{deviceId}/credentials")
                 .RespondJson(expectedEnrollmentCredentials);
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Client/Services/EdgeDeviceClientServiceTests.cs b/src/AzureIoTHub.Portal.Tests.Unit/Client/Services/EdgeDeviceClientServiceTests.cs
index 704cd1d3c..d40e15258 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Client/Services/EdgeDeviceClientServiceTests.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Client/Services/EdgeDeviceClientServiceTests.cs
@@ -160,7 +160,7 @@ public async Task GetEnrollmentCredentialsShouldReturnEnrollmentCredentials()
             // Arrange
             var deviceId = Fixture.Create<string>();
 
-            var expectedEnrollmentCredentials = Fixture.Create<EnrollmentCredentials>();
+            var expectedEnrollmentCredentials = Fixture.Create<SymmetricCredentials>();
 
             _ = MockHttpClient.When(HttpMethod.Get, $"/api/edge/devices/{deviceId}/credentials")
                 .RespondJson(expectedEnrollmentCredentials);
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Infrastructure/Providers/AzureDeviceRegistryProviderTests.cs b/src/AzureIoTHub.Portal.Tests.Unit/Infrastructure/Providers/AzureDeviceRegistryProviderTests.cs
index 81d768c97..6baf9085a 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Infrastructure/Providers/AzureDeviceRegistryProviderTests.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Infrastructure/Providers/AzureDeviceRegistryProviderTests.cs
@@ -269,10 +269,10 @@ public async Task GetEnrollmentCredentialsAsyncShouldGetDPSAttestation(string mo
 
             // Assert
             Assert.IsNotNull(result);
-            Assert.AreEqual("sn-007-888-abc-mac-a1-b2-c3-d4-e5-f6", result.RegistrationID);
-            Assert.AreEqual("https://FakeEndpoint", result.ProvisioningEndpoint);
-            Assert.AreEqual("FakeScopeID", result.ScopeID);
-            Assert.AreEqual("Jsm0lyGpjaVYVP2g3FnmnmG9dI/9qU24wNoykUmermc=", result.SymmetricKey);
+            Assert.AreEqual("sn-007-888-abc-mac-a1-b2-c3-d4-e5-f6", result.SymmetricCredentials.RegistrationID);
+            Assert.AreEqual("https://FakeEndpoint", result.SymmetricCredentials.ProvisioningEndpoint);
+            Assert.AreEqual("FakeScopeID", result.SymmetricCredentials.ScopeID);
+            Assert.AreEqual("Jsm0lyGpjaVYVP2g3FnmnmG9dI/9qU24wNoykUmermc=", result.SymmetricCredentials.SymmetricKey);
             this.mockRepository.VerifyAll();
         }
 
@@ -325,10 +325,10 @@ public async Task WhenEnrollmentGoupsNotExistGetEnrollmentCredentialsAsyncShould
 
             // Assert
             Assert.IsNotNull(result);
-            Assert.AreEqual("sn-007-888-abc-mac-a1-b2-c3-d4-e5-f6", result.RegistrationID);
-            Assert.AreEqual("https://FakeEndpoint", result.ProvisioningEndpoint);
-            Assert.AreEqual("FakeScopeID", result.ScopeID);
-            Assert.AreEqual("Jsm0lyGpjaVYVP2g3FnmnmG9dI/9qU24wNoykUmermc=", result.SymmetricKey);
+            Assert.AreEqual("sn-007-888-abc-mac-a1-b2-c3-d4-e5-f6", result.SymmetricCredentials.RegistrationID);
+            Assert.AreEqual("https://FakeEndpoint", result.SymmetricCredentials.ProvisioningEndpoint);
+            Assert.AreEqual("FakeScopeID", result.SymmetricCredentials.ScopeID);
+            Assert.AreEqual("Jsm0lyGpjaVYVP2g3FnmnmG9dI/9qU24wNoykUmermc=", result.SymmetricCredentials.SymmetricKey);
 
             this.mockRepository.VerifyAll();
         }
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Infrastructure/Services/AWSDeviceServiceTests.cs b/src/AzureIoTHub.Portal.Tests.Unit/Infrastructure/Services/AWSDeviceServiceTests.cs
index 5704152b1..2b274dc5a 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Infrastructure/Services/AWSDeviceServiceTests.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Infrastructure/Services/AWSDeviceServiceTests.cs
@@ -45,6 +45,7 @@ public class AWSDeviceServiceTests : BackendUnitTest
         private Mock<IAmazonIotData> mockAmazonIotDataClient;
         private Mock<IConfiguration> mockConfiguration;
         private Mock<IAWSExternalDeviceService> mockAWSExternalDevicesService;
+        private Mock<IExternalDeviceService> mockExternalDeviceService;
 
         private IDeviceService<DeviceDetails> awsDeviceService;
 
@@ -63,6 +64,7 @@ public void SetUp()
             this.mockAmazonIotDataClient = MockRepository.Create<IAmazonIotData>();
             this.mockConfiguration = MockRepository.Create<IConfiguration>();
             this.mockAWSExternalDevicesService = MockRepository.Create<IAWSExternalDeviceService>();
+            this.mockExternalDeviceService = MockRepository.Create<IExternalDeviceService>();
 
             _ = ServiceCollection.AddSingleton(this.mockDeviceRepository.Object);
             _ = ServiceCollection.AddSingleton(this.mockLabelRepository.Object);
@@ -73,8 +75,9 @@ public void SetUp()
             _ = ServiceCollection.AddSingleton(this.mockAmazonIotClient.Object);
             _ = ServiceCollection.AddSingleton(this.mockAmazonIotDataClient.Object);
             _ = ServiceCollection.AddSingleton(this.mockConfiguration.Object);
-            _ = ServiceCollection.AddSingleton(DbContext);
             _ = ServiceCollection.AddSingleton(this.mockAWSExternalDevicesService.Object);
+            _ = ServiceCollection.AddSingleton(this.mockExternalDeviceService.Object);
+            _ = ServiceCollection.AddSingleton(DbContext);
             _ = ServiceCollection.AddSingleton<IDeviceService<DeviceDetails>, AWSDeviceService>();
 
             Services = ServiceCollection.BuildServiceProvider();
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Infrastructure/Services/AwsExternalDeviceServiceTests.cs b/src/AzureIoTHub.Portal.Tests.Unit/Infrastructure/Services/AwsExternalDeviceServiceTests.cs
index 2474a6a5d..c1c3ce072 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Infrastructure/Services/AwsExternalDeviceServiceTests.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Infrastructure/Services/AwsExternalDeviceServiceTests.cs
@@ -6,15 +6,22 @@ namespace AzureIoTHub.Portal.Tests.Unit.Infrastructure.Services
     using System;
     using System.Threading;
     using System.Threading.Tasks;
+    using Amazon.GreengrassV2;
+    using Amazon.GreengrassV2.Model;
     using Amazon.IoT;
     using Amazon.IoT.Model;
+    using Amazon.SecretsManager;
     using AutoFixture;
     using AutoMapper;
     using AzureIoTHub.Portal.Application.Services;
+    using AzureIoTHub.Portal.Domain;
     using AzureIoTHub.Portal.Domain.Shared;
     using AzureIoTHub.Portal.Infrastructure.Services;
+    using AzureIoTHub.Portal.Models.v10;
     using AzureIoTHub.Portal.Tests.Unit.UnitTests.Bases;
     using FluentAssertions;
+    using Microsoft.Azure.Devices;
+    using Microsoft.Azure.Devices.Shared;
     using Microsoft.Extensions.DependencyInjection;
     using Moq;
     using NUnit.Framework;
@@ -23,21 +30,30 @@ namespace AzureIoTHub.Portal.Tests.Unit.Infrastructure.Services
     public class AwsExternalDeviceServiceTests : BackendUnitTest
     {
         private Mock<IAmazonIoT> mockAmazonIot;
+        private Mock<IAmazonGreengrassV2> mockGreengrassV2;
+        private Mock<IAmazonSecretsManager> mockSecretsManager;
+        private Mock<ConfigHandler> mockConfigHandler;
 
-        private IExternalDeviceService externalDeviceModelService;
+        private IExternalDeviceService externalDeviceService;
 
         public override void Setup()
         {
             base.Setup();
 
             this.mockAmazonIot = MockRepository.Create<IAmazonIoT>();
+            this.mockGreengrassV2 = MockRepository.Create<IAmazonGreengrassV2>();
+            this.mockSecretsManager = MockRepository.Create<IAmazonSecretsManager>();
+            this.mockConfigHandler = MockRepository.Create<ConfigHandler>();
 
             _ = ServiceCollection.AddSingleton(this.mockAmazonIot.Object);
+            _ = ServiceCollection.AddSingleton(this.mockGreengrassV2.Object);
+            _ = ServiceCollection.AddSingleton(this.mockSecretsManager.Object);
+            _ = ServiceCollection.AddSingleton(this.mockConfigHandler.Object);
             _ = ServiceCollection.AddSingleton<IExternalDeviceService, AwsExternalDeviceService>();
 
             Services = ServiceCollection.BuildServiceProvider();
 
-            this.externalDeviceModelService = Services.GetRequiredService<IExternalDeviceService>();
+            this.externalDeviceService = Services.GetRequiredService<IExternalDeviceService>();
             Mapper = Services.GetRequiredService<IMapper>();
         }
 
@@ -57,14 +73,14 @@ public async Task CreateDeviceModel_NonExistingThingType_ThingTypeCreated()
                 .ReturnsAsync(createThingTypeResponse);
 
             _ = this.mockAmazonIot.Setup(c => c.DescribeThingGroupAsync(It.Is<DescribeThingGroupRequest>(d => d.ThingGroupName.Equals(externalDeviceModelDto.Name, StringComparison.OrdinalIgnoreCase)), It.IsAny<CancellationToken>()))
-                    .ThrowsAsync(new ResourceNotFoundException(It.IsAny<string>()));
+                    .ThrowsAsync(new Amazon.IoT.Model.ResourceNotFoundException(It.IsAny<string>()));
 
             _ = this.mockAmazonIot.Setup(c => c.CreateDynamicThingGroupAsync(It.Is<CreateDynamicThingGroupRequest>(d => d.ThingGroupName.Equals(externalDeviceModelDto.Name, StringComparison.OrdinalIgnoreCase)
                                                                                                                         && d.QueryString.Equals($"thingTypeName: {externalDeviceModelDto.Name}", StringComparison.OrdinalIgnoreCase)), It.IsAny<CancellationToken>()))
                     .ReturnsAsync(new CreateDynamicThingGroupResponse());
 
             // Act
-            var result = await this.externalDeviceModelService.CreateDeviceModel(externalDeviceModelDto);
+            var result = await this.externalDeviceService.CreateDeviceModel(externalDeviceModelDto);
 
             // Assert
             _ = result.Id.Should().Be(createThingTypeResponse.ThingTypeId);
@@ -81,7 +97,7 @@ public async Task CreateDeviceModel_ExistingThingType_ResourceAlreadyExistsExcep
                 .ThrowsAsync(new ResourceAlreadyExistsException(Fixture.Create<string>()));
 
             // Act
-            var act = () => this.externalDeviceModelService.CreateDeviceModel(externalDeviceModelDto);
+            var act = () => this.externalDeviceService.CreateDeviceModel(externalDeviceModelDto);
 
             // Assert
             _ = await act.Should().ThrowAsync<Portal.Domain.Exceptions.ResourceAlreadyExistsException>();
@@ -101,7 +117,7 @@ public async Task DeleteDeviceModel_ExistingThingType_ThingTypeDepcrecated()
                     .ReturnsAsync(new DeleteDynamicThingGroupResponse());
 
             // Act
-            await this.externalDeviceModelService.DeleteDeviceModel(externalDeviceModelDto);
+            await this.externalDeviceService.DeleteDeviceModel(externalDeviceModelDto);
 
             // Assert
             MockRepository.VerifyAll();
@@ -114,14 +130,262 @@ public async Task DeleteDeviceModel_NonExistingThingType_ResourceNotFoundExcepti
             var externalDeviceModelDto = Fixture.Create<ExternalDeviceModelDto>();
 
             _ = this.mockAmazonIot.Setup(e => e.DeprecateThingTypeAsync(It.Is<DeprecateThingTypeRequest>(c => externalDeviceModelDto.Name.Equals(c.ThingTypeName, StringComparison.OrdinalIgnoreCase) && !c.UndoDeprecate), It.IsAny<CancellationToken>()))
-                .ThrowsAsync(new ResourceNotFoundException(Fixture.Create<string>()));
+                .ThrowsAsync(new Amazon.IoT.Model.ResourceNotFoundException(Fixture.Create<string>()));
 
             // Act
-            var act = () => this.externalDeviceModelService.DeleteDeviceModel(externalDeviceModelDto);
+            var act = () => this.externalDeviceService.DeleteDeviceModel(externalDeviceModelDto);
 
             // Assert
             _ = await act.Should().ThrowAsync<Portal.Domain.Exceptions.ResourceNotFoundException>();
             MockRepository.VerifyAll();
         }
+
+        [Test]
+        public async Task DeleteDeviceShouldDeleteAWSCoreDevice()
+        {
+            // Arrange
+            var deviceId = Fixture.Create<string>();
+
+            _ = this.mockGreengrassV2.Setup(c => c.DeleteCoreDeviceAsync(It.Is<DeleteCoreDeviceRequest>(r => r.CoreDeviceThingName == deviceId), It.IsAny<CancellationToken>()))
+                .ReturnsAsync(Fixture.Create<DeleteCoreDeviceResponse>());
+
+            _ = this.mockAmazonIot.Setup(c => c.DeleteThingAsync(It.Is<DeleteThingRequest>(r => r.ThingName == deviceId), It.IsAny<CancellationToken>()))
+                .ReturnsAsync(Fixture.Create<DeleteThingResponse>());
+
+            // Act
+            await this.externalDeviceService.DeleteDevice(deviceId);
+
+            // Assert
+            this.MockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenThingNotExistsOrCoreNotExistsDeviceDeleteShouldPass()
+        {
+            // Arrange
+            var deviceId = Fixture.Create<string>();
+
+            _ = this.mockGreengrassV2.Setup(c => c.DeleteCoreDeviceAsync(It.Is<DeleteCoreDeviceRequest>(r => r.CoreDeviceThingName == deviceId), It.IsAny<CancellationToken>()))
+                .ThrowsAsync(new Amazon.GreengrassV2.Model.ResourceNotFoundException(Fixture.Create<string>()));
+
+            _ = this.mockAmazonIot.Setup(c => c.DeleteThingAsync(It.Is<DeleteThingRequest>(r => r.ThingName == deviceId), It.IsAny<CancellationToken>()))
+                .ThrowsAsync(new Amazon.IoT.Model.ResourceNotFoundException(Fixture.Create<string>()));
+
+            // Act
+            await this.externalDeviceService.DeleteDevice(deviceId);
+
+            // Assert
+            this.MockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task CreateDeviceWithTwinShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.CreateDeviceWithTwin(Fixture.Create<string>(), Fixture.Create<bool>(), Fixture.Create<Twin>(), Fixture.Create<DeviceStatus>());
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task CreateNewTwinFromDeviceIdShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.CreateNewTwinFromDeviceId(Fixture.Create<string>());
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task ExecuteC2DMethodShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.ExecuteC2DMethod(Fixture.Create<string>(), Fixture.Create<CloudToDeviceMethod >());
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task ExecuteCustomCommandC2DMethodShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.ExecuteCustomCommandC2DMethod(Fixture.Create<string>(), Fixture.Create<string>(), Fixture.Create<CloudToDeviceMethod >());
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetAllDeviceShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetAllDevice();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetAllEdgeDeviceShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetAllEdgeDevice();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetAllGatewayIDShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetAllGatewayID();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetConcentratorsCountShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetConcentratorsCount();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetConnectedDevicesCountShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetConnectedDevicesCount();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetConnectedEdgeDevicesCountShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetConnectedEdgeDevicesCount();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetDeviceShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetDevice(It.IsAny<string>());
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetDevicesCountShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetDevicesCount();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetDevicesToExportShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetDevicesToExport();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetDeviceTwinShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetDeviceTwin(It.IsAny<string>());
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetDeviceTwinWithEdgeHubModuleShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetDeviceTwinWithEdgeHubModule(It.IsAny<string>());
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetDeviceTwinWithModuleShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetDeviceTwinWithModule(It.IsAny<string>());
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetEdgeDeviceLogsShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetEdgeDeviceLogs(It.IsAny<string>(), Fixture.Create<IoTEdgeModule>());
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task GetEdgeDevicesCountShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.GetEdgeDevicesCount();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task RetrieveLastConfigurationShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.RetrieveLastConfiguration(Fixture.Create<Twin>());
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task UpdateDeviceShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.UpdateDevice(new Device());
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
+
+        [Test]
+        public async Task UpdateDeviceTwinShouldThrowNotImplementedException()
+        {
+            // Act
+            var act = () => this.externalDeviceService.UpdateDeviceTwin(Fixture.Create<Twin>());
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+        }
     }
 }
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Server/Controllers/v1.0/DevicesControllerTests.cs b/src/AzureIoTHub.Portal.Tests.Unit/Server/Controllers/v1.0/DevicesControllerTests.cs
index d882085d5..b1904025b 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Server/Controllers/v1.0/DevicesControllerTests.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Server/Controllers/v1.0/DevicesControllerTests.cs
@@ -250,10 +250,14 @@ public async Task GetEnrollmentCredentialsShouldReturnEnrollmentCredentials()
             var devicesController = CreateDevicesController();
             const string deviceId = "aaa";
 
-            var expectedEnrollmentCredentials = new EnrollmentCredentials
+            var expectedEnrollmentCredentials = new DeviceCredentials
             {
-                RegistrationID = "aaa",
-                SymmetricKey = "dfhjkfdgh"
+                AuthenticationMode = AuthenticationMode.SymmetricKey,
+                SymmetricCredentials = new SymmetricCredentials
+                {
+                    RegistrationID = "aaa",
+                    SymmetricKey = "dfhjkfdgh"
+                }
             };
 
             _ = this.mockDeviceService.Setup(service => service.GetCredentials(deviceId))
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Server/Controllers/v1.0/EdgeDevicesControllerTests.cs b/src/AzureIoTHub.Portal.Tests.Unit/Server/Controllers/v1.0/EdgeDevicesControllerTests.cs
index 31cf50e00..ebd7f2137 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Server/Controllers/v1.0/EdgeDevicesControllerTests.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Server/Controllers/v1.0/EdgeDevicesControllerTests.cs
@@ -5,24 +5,35 @@ namespace AzureIoTHub.Portal.Tests.Unit.Server.Controllers.v10
 {
     using System;
     using System.Collections.Generic;
+    using System.Diagnostics;
     using System.Linq;
+    using System.Net;
+    using System.Security.Cryptography.Xml;
     using System.Threading.Tasks;
+    using AutoFixture;
+    using Azure;
     using AzureIoTHub.Portal.Application.Services;
     using AzureIoTHub.Portal.Domain.Exceptions;
     using AzureIoTHub.Portal.Server.Controllers.V10;
     using AzureIoTHub.Portal.Shared.Models.v1._0;
     using AzureIoTHub.Portal.Shared.Models.v10;
+    using AzureIoTHub.Portal.Tests.Unit.UnitTests.Bases;
     using FluentAssertions;
+    using FluentAssertions.Extensions;
+    using Microsoft.AspNetCore.DataProtection;
+    using Microsoft.AspNetCore.Http;
     using Microsoft.AspNetCore.Mvc;
     using Microsoft.AspNetCore.Mvc.Routing;
+    using Microsoft.AspNetCore.WebUtilities;
     using Microsoft.Azure.Devices.Common.Exceptions;
     using Microsoft.Extensions.Logging;
+    using Microsoft.Graph.DeviceManagement.DeviceConfigurations.Item.GetOmaSettingPlainTextValueWithSecretReferenceValueId;
     using Models.v10;
     using Moq;
     using NUnit.Framework;
 
     [TestFixture]
-    public class EdgeDevicesControllerTests
+    public class EdgeDevicesControllerTests : BackendUnitTest
     {
         private MockRepository mockRepository;
 
@@ -30,6 +41,7 @@ public class EdgeDevicesControllerTests
         private Mock<IExternalDeviceService> mockDeviceService;
         private Mock<IEdgeDevicesService> mockEdgeDeviceService;
         private Mock<IUrlHelper> mockUrlHelper;
+        private IDataProtectionProvider mockDataProtectionProvider;
 
         [SetUp]
         public void SetUp()
@@ -40,14 +52,16 @@ public void SetUp()
             this.mockDeviceService = this.mockRepository.Create<IExternalDeviceService>();
             this.mockEdgeDeviceService = this.mockRepository.Create<IEdgeDevicesService>();
             this.mockUrlHelper = this.mockRepository.Create<IUrlHelper>();
+            this.mockDataProtectionProvider = new EphemeralDataProtectionProvider();
         }
 
-        private EdgeDevicesController CreateEdgeDevicesController()
+        private EdgeDevicesController CreateEdgeDevicesController(IDataProtectionProvider dataProtectionProvider = null)
         {
             return new EdgeDevicesController(
                 this.mockLogger.Object,
                 this.mockDeviceService.Object,
-                this.mockEdgeDeviceService.Object)
+                this.mockEdgeDeviceService.Object,
+                dataProtectionProvider ?? this.mockDataProtectionProvider)
             {
                 Url = this.mockUrlHelper.Object
             };
@@ -302,14 +316,17 @@ public async Task GetEnrollmentCredentialsShouldReturnEnrollmentCredentials()
             // Arrange
             var edgeDevicesController = CreateEdgeDevicesController();
 
-            var deviceId = Guid.NewGuid().ToString();
+            var mockDevice = Fixture.Create<IoTEdgeDevice>();
+
+            _ = this.mockEdgeDeviceService.Setup(x => x.GetEdgeDevice(mockDevice.DeviceId))
+                .ReturnsAsync(mockDevice);
 
             _ = this.mockDeviceService
-                .Setup(x => x.GetEdgeDeviceCredentials(It.Is<string>(c => c.Equals(deviceId, StringComparison.Ordinal))))
-                .ReturnsAsync(new EnrollmentCredentials());
+                .Setup(x => x.GetEdgeDeviceCredentials(mockDevice))
+                .ReturnsAsync(new DeviceCredentials());
 
             // Act
-            var result = await edgeDevicesController.GetCredentials(deviceId);
+            var result = await edgeDevicesController.GetCredentials(mockDevice.DeviceId);
 
             // Assert
             Assert.IsNotNull(result);
@@ -320,33 +337,28 @@ public async Task GetEnrollmentCredentialsShouldReturnEnrollmentCredentials()
             Assert.AreEqual(200, okObjectResult.StatusCode);
 
             Assert.IsNotNull(okObjectResult.Value);
-            Assert.IsAssignableFrom<EnrollmentCredentials>(okObjectResult.Value);
+            Assert.IsAssignableFrom<DeviceCredentials>(okObjectResult.Value);
 
             this.mockRepository.VerifyAll();
         }
 
         [Test]
-        public async Task WhenDeviceDoesNotExistGetEnrollmentCredentialsShouldThrowAnException()
+        public async Task WhenDeviceDoesNotExistGetEnrollmentCredentialsShouldReturnNotFound()
         {
             // Arrange
             var edgeDevicesController = CreateEdgeDevicesController();
 
             var deviceId = Guid.NewGuid().ToString();
 
-            _ = this.mockDeviceService
-                .Setup(x => x.GetEdgeDeviceCredentials(It.Is<string>(c => c.Equals(deviceId, StringComparison.Ordinal))))
-                .ThrowsAsync(new ResourceNotFoundException(""));
+            _ = this.mockEdgeDeviceService.Setup(c => c.GetEdgeDevice(deviceId))
+                .ReturnsAsync((IoTEdgeDevice)null);
 
             // Act
             var result = await edgeDevicesController.GetCredentials(deviceId);
 
             // Assert
             Assert.IsNotNull(result);
-
-            var objectResult = result.Result as ObjectResult;
-
-            Assert.IsNotNull(objectResult);
-            Assert.AreEqual(404, objectResult.StatusCode);
+            Assert.IsAssignableFrom<NotFoundResult>(result.Result);
 
             this.mockRepository.VerifyAll();
         }
@@ -425,5 +437,102 @@ public async Task GetAvailableLabels_ExistingLabels_ReturnsLabels()
             _ = result.Should().BeEquivalentTo(expectedLabels);
             this.mockRepository.VerifyAll();
         }
+
+        [Test]
+        public async Task GetEnrollmentScriptUrlShouldReturnEncryptedUrlParameters()
+        {
+            // Arrange
+            var encryptedData = Fixture.CreateMany<byte>(64).ToArray();
+            var encodedPayload = WebEncoders.Base64UrlEncode(encryptedData);
+
+            var fakeUri = Fixture.Create<Uri>();
+
+            var deviceId = Fixture.Create<string>();
+            var templateName = Fixture.Create<string>();
+
+            var mockDataProtectionProvider = this.mockRepository.Create<IDataProtectionProvider>();
+            var mockDataProtector = this.mockRepository.Create<IDataProtector>();
+
+            _ = mockDataProtectionProvider.Setup(c => c.CreateProtector(It.IsAny<string>()))
+                .Returns(mockDataProtector.Object);
+
+            var edgeDeviceController = CreateEdgeDevicesController(mockDataProtectionProvider.Object);
+
+            var mockLimitedLifetimeProtector = this.mockRepository
+                                                    .Create<ITimeLimitedDataProtector>();
+
+            _ = mockDataProtector.Setup(c => c.CreateProtector(It.IsAny<string>()))
+                .Returns(mockLimitedLifetimeProtector.Object);
+
+            _ = mockLimitedLifetimeProtector.Setup(c => c.Protect(It.IsAny<byte[]>()))
+                .Returns(encryptedData);
+
+            _ = this.mockUrlHelper.SetupGet(c => c.ActionContext)
+                .Returns(new ActionContext
+                {
+                    HttpContext = new DefaultHttpContext()
+                });
+
+            _ = this.mockUrlHelper.Setup(c => c.Action(It.Is<UrlActionContext>(a => a.Values.ToString() == new { code = encodedPayload }.ToString())))
+                .Returns(fakeUri.ToString());
+
+            // Act
+            var response = edgeDeviceController.GetEnrollementScriptUrl(deviceId, templateName);
+
+            // Assert
+            _ = response.Result.Should().BeAssignableTo<OkObjectResult>();
+            _ = (response.Result as OkObjectResult).Value.Should().Be(fakeUri.ToString());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetEnrollementScriptShouldDecryptTheCode()
+        {
+            // Arrange
+            var deviceId = Fixture.Create<string>();
+            var templateName = Fixture.Create<string>();
+
+            var encryptedData = "{\"deviceId\": \"" + deviceId + "\",\"templateName\": \"" + templateName + "\"}";
+            var expectedResumt = Fixture.Create<string>();
+
+            var protector = this.mockDataProtectionProvider.CreateProtector(EdgeDevicesController.EdgeEnrollementKeyProtectorName)
+                                                                .ToTimeLimitedDataProtector();
+
+            var code = protector.Protect(encryptedData, DateTimeOffset.UtcNow + 1.Minutes());
+
+            _ = this.mockEdgeDeviceService.Setup(c => c.GetEdgeDeviceEnrollementScript(deviceId, templateName))
+                .ReturnsAsync(expectedResumt);
+
+            var edgeDeviceController = CreateEdgeDevicesController();
+
+            // Act
+            var response = await edgeDeviceController.GetEnrollementScript(code);
+
+            // Assert
+            _ = response.Result.Should().BeAssignableTo<OkObjectResult>();
+            _ = (response.Result as OkObjectResult).Value.Should().Be(expectedResumt);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenCodeExpiresGetEnrollementScriptShouldReturnBadRequest()
+        {
+            // Arrange
+            var encryptedData = Fixture.Create<string>();
+
+            var protector = this.mockDataProtectionProvider.CreateProtector(EdgeDevicesController.EdgeEnrollementKeyProtectorName)
+                                                                .ToTimeLimitedDataProtector();
+
+            var code = protector.Protect(encryptedData, DateTimeOffset.UtcNow - 1.Minutes());
+
+            var edgeDeviceController = CreateEdgeDevicesController();
+
+            // Act
+            var response = await edgeDeviceController.GetEnrollementScript(code);
+
+            // Assert
+            _ = response.Result.Should().BeAssignableTo<BadRequestObjectResult>();
+            this.mockRepository.VerifyAll();
+        }
     }
 }
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Server/Services/DeviceServiceTests.cs b/src/AzureIoTHub.Portal.Tests.Unit/Server/Services/DeviceServiceTests.cs
index 44966a1b7..2084168d9 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Server/Services/DeviceServiceTests.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Server/Services/DeviceServiceTests.cs
@@ -550,9 +550,9 @@ public async Task GetCredentials_DeviceExist_ReturnsEnrollmentCredentials()
                 DeviceID = Fixture.Create<string>()
             };
 
-            var expectedEnrollmentCredentials = Fixture.Create<EnrollmentCredentials>();
+            var expectedEnrollmentCredentials = Fixture.Create<DeviceCredentials>();
 
-            _ = this.mockExternalDevicesService.Setup(service => service.GetEnrollmentCredentials(deviceDto.DeviceID))
+            _ = this.mockExternalDevicesService.Setup(service => service.GetDeviceCredentials(deviceDto.DeviceID))
                 .ReturnsAsync(expectedEnrollmentCredentials);
 
             // Act
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Server/Services/EdgeDeviceServiceTest.cs b/src/AzureIoTHub.Portal.Tests.Unit/Server/Services/EdgeDeviceServiceTest.cs
index 18fcfb3c4..1cc911f73 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Server/Services/EdgeDeviceServiceTest.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Server/Services/EdgeDeviceServiceTest.cs
@@ -16,6 +16,7 @@ namespace AzureIoTHub.Portal.Tests.Unit.Server.Services
     using AzureIoTHub.Portal.Domain.Entities;
     using AzureIoTHub.Portal.Domain.Exceptions;
     using AzureIoTHub.Portal.Domain.Repositories;
+    using AzureIoTHub.Portal.Infrastructure.Helpers;
     using AzureIoTHub.Portal.Models.v10;
     using AzureIoTHub.Portal.Server.Services;
     using AzureIoTHub.Portal.Shared.Models.v1._0;
@@ -39,6 +40,8 @@ public class EdgeDeviceServiceTest : BackendUnitTest
         private Mock<IDeviceTagValueRepository> mockDeviceTagValueRepository;
         private Mock<IDeviceModelImageManager> mockDeviceModelImageManager;
         private Mock<ILabelRepository> mockLabelRepository;
+        private Mock<IEdgeEnrollementHelper> mockEnrollementHelper;
+        private Mock<ConfigHandler> mockConfig;
 
         private IEdgeDevicesService edgeDevicesService;
 
@@ -54,6 +57,8 @@ public void SetUp()
             this.mockDeviceTagValueRepository = MockRepository.Create<IDeviceTagValueRepository>();
             this.mockDeviceModelImageManager = MockRepository.Create<IDeviceModelImageManager>();
             this.mockLabelRepository = MockRepository.Create<ILabelRepository>();
+            this.mockEnrollementHelper = MockRepository.Create<IEdgeEnrollementHelper>();
+            this.mockConfig = MockRepository.Create<ConfigHandler>();
 
             _ = ServiceCollection.AddSingleton(this.mockDeviceTagService.Object);
             _ = ServiceCollection.AddSingleton(this.mockDeviceService.Object);
@@ -62,8 +67,10 @@ public void SetUp()
             _ = ServiceCollection.AddSingleton(this.mockDeviceTagValueRepository.Object);
             _ = ServiceCollection.AddSingleton(this.mockDeviceModelImageManager.Object);
             _ = ServiceCollection.AddSingleton(this.mockLabelRepository.Object);
+            _ = ServiceCollection.AddSingleton(this.mockConfig.Object);
+            _ = ServiceCollection.AddSingleton(this.mockEnrollementHelper.Object);
             _ = ServiceCollection.AddSingleton(DbContext);
-            _ = ServiceCollection.AddSingleton<IEdgeDevicesService, EdgeDevicesService>();
+            _ = ServiceCollection.AddSingleton<IEdgeDevicesService, AzureEdgeDevicesService>();
 
             Services = ServiceCollection.BuildServiceProvider();
 
@@ -556,6 +563,9 @@ public async Task DeleteEdgeDeviceDeviceNotExistNothingIsDone()
             _ = this.mockEdgeDeviceRepository.Setup(repository => repository.GetByIdAsync(deviceDto.DeviceId, d => d.Tags, d => d.Labels))
                 .ReturnsAsync(value: null);
 
+            _ = this.mockUnitOfWork.Setup(c => c.SaveAsync())
+                .Returns(Task.CompletedTask);
+
             // Act
             await this.edgeDevicesService.DeleteEdgeDeviceAsync(deviceDto.DeviceId);
 
diff --git a/src/AzureIoTHub.Portal.Tests.Unit/Server/Services/ExternalDeviceServiceTests.cs b/src/AzureIoTHub.Portal.Tests.Unit/Server/Services/ExternalDeviceServiceTests.cs
index f22f4caa4..8d3f35144 100644
--- a/src/AzureIoTHub.Portal.Tests.Unit/Server/Services/ExternalDeviceServiceTests.cs
+++ b/src/AzureIoTHub.Portal.Tests.Unit/Server/Services/ExternalDeviceServiceTests.cs
@@ -1,2130 +1,2136 @@
-// Copyright (c) CGI France. All rights reserved.
-// Licensed under the MIT license. See LICENSE file in the project root for full license information.
-
-namespace AzureIoTHub.Portal.Tests.Unit.Server.Services
-{
-    using System;
-    using System.Collections.Generic;
-    using System.Linq;
-    using System.Text.Json.Nodes;
-    using System.Threading;
-    using System.Threading.Tasks;
-    using Azure;
-    using AzureIoTHub.Portal.Application.Providers;
-    using AzureIoTHub.Portal.Domain.Exceptions;
+// Copyright (c) CGI France. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+namespace AzureIoTHub.Portal.Tests.Unit.Server.Services
+{
+    using System;
+    using System.Collections.Generic;
+    using System.Linq;
+    using System.Text.Json.Nodes;
+    using System.Threading;
+    using System.Threading.Tasks;
+    using AutoFixture;
+    using Azure;
+    using AzureIoTHub.Portal.Application.Providers;
+    using AzureIoTHub.Portal.Domain.Exceptions;
     using AzureIoTHub.Portal.Domain.Repositories;
     using AzureIoTHub.Portal.Domain.Shared;
-    using AzureIoTHub.Portal.Server.Services;
-    using AzureIoTHub.Portal.Shared.Constants;
-    using FluentAssertions;
-    using Microsoft.Azure.Devices;
-    using Microsoft.Azure.Devices.Common.Exceptions;
-    using Microsoft.Azure.Devices.Shared;
-    using Microsoft.Extensions.Logging;
-    using Models.v10;
-    using Moq;
-    using Newtonsoft.Json;
-    using NUnit.Framework;
-
-    [TestFixture]
-    public class ExternalDeviceServiceTests
-    {
-        private MockRepository mockRepository;
-
-        private Mock<RegistryManager> mockRegistryManager;
-        private Mock<ServiceClient> mockServiceClient;
-        private Mock<ILogger<ExternalDeviceService>> mockLogger;
-        private Mock<IDeviceRegistryProvider> mockRegistryProvider;
-        private Mock<IDeviceModelRepository> mockDeviceModelRepository;
-
-        [SetUp]
-        public void SetUp()
-        {
-            this.mockRepository = new MockRepository(MockBehavior.Strict);
-
-            this.mockRegistryManager = this.mockRepository.Create<RegistryManager>();
-            this.mockServiceClient = this.mockRepository.Create<ServiceClient>();
-            this.mockLogger = this.mockRepository.Create<ILogger<ExternalDeviceService>>();
-            this.mockRegistryProvider = this.mockRepository.Create<IDeviceRegistryProvider>();
-            this.mockDeviceModelRepository = this.mockRepository.Create<IDeviceModelRepository>();
-        }
-
-        private ExternalDeviceService CreateService()
-        {
-            return new ExternalDeviceService(
-                this.mockLogger.Object,
-                this.mockRegistryManager.Object,
-                this.mockServiceClient.Object,
-                this.mockDeviceModelRepository.Object,
-                this.mockRegistryProvider.Object);
-        }
-
-        [Test]
-        public async Task GetAllEdgeDeviceStateUnderTestExpectedBehavior()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 1}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = true"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllEdgeDevice();
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetAllEdgeDevice_SearchStatusIsTrue_ReturnsEdgeDevicesWithEnabledStatus()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 1}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = true AND status = 'enabled'"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true AND status = 'enabled'")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllEdgeDevice(searchStatus: true);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetAllEdgeDevice_SearchStatusIsFalse_ReturnsEdgeDevicesWithDisabledStatus()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 1}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = true AND status = 'disabled'"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true AND status = 'disabled'")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllEdgeDevice(searchStatus: false);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetAllEdgeDevice_SearchTextIsNotNull_ReturnsEdgeDevices()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            var searchText = Guid.NewGuid().ToString();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 1}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = true AND (STARTSWITH(deviceId, '{searchText}') OR (is_defined(tags.deviceName) AND STARTSWITH(tags.deviceName, '{searchText}')))"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true AND (STARTSWITH(deviceId, '{searchText}') OR (is_defined(tags.deviceName) AND STARTSWITH(tags.deviceName, '{searchText}')))")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllEdgeDevice(searchText: searchText );
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetAllEdgeDevice_CountWithoutTotalNumber_ReturnsEmptyEdgeDevices()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ toto: 1}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllEdgeDevice();
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(0, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetAllEdgeDevice_CountTotalNumberEqualZero_ReturnsEmptyEdgeDevices()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 0}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllEdgeDevice();
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(0, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-
-        [Test]
-        public async Task GetAllEdgeDeviceShouldThrowInternalServerErrorExceptionWhenGettingDevices()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 1}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = true"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var act = () => service.GetAllEdgeDevice();
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetAllEdgeDeviceShouldThrowInternalServerErrorExceptionWhenGettingDevicesCount()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var act = () => service.GetAllEdgeDevice();
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetAllDeviceStateUnderTestExpectedBehavior()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 10}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = false"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllDevice();
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetAllDeviceShouldThrowInternalServerErrorExceptionWhenIssueOccursOnGettingDevicesCount()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var act = () => service.GetAllDevice();
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetDeviceTwinWhithModuleShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockQuery.Setup(c => c.HasMoreResults)
-                .Returns(true);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                    It.Is<string>(x => x == $"SELECT * FROM devices.modules WHERE devices.modules.moduleId = '$edgeAgent' AND deviceId in ['{deviceId}']")))
-                .Returns(mockQuery.Object);
-
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync())
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            // Act
-            var act = () => service.GetDeviceTwinWithModule(deviceId);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public void GetDeviceTwinWhithModule_EqualZero_ReturnsEmptyDevices()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            // Act
-            var result = () => service.GetDeviceTwinWithModule(deviceId);
-
-            // Assert
-            Assert.IsNotNull(result);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetAllDeviceShouldThrowInternalServerErrorExceptionWhenIssueOccursOneGettingDevices()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 10}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                    It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = false"),
-                    It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var act = () => service.GetAllDevice();
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenSpecifyingFilterToDeviceTypeGetAllDeviceShouldQueryToIoTHub()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            const string expectedAdditionalFilter = "AND devices.tags.deviceType = 'filteredType'";
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 10}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllDevice(filterDeviceType: "filteredType");
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenExcludingDeviceTypeGetAllDeviceShouldQueryToIoTHub()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            const string expectedAdditionalFilter = "AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'filteredType')";
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 10}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllDevice(excludeDeviceType: "filteredType");
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenSearchingDeviceGetAllDeviceShouldQueryToIoTHub()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            const string expectedAdditionalFilter = "AND (STARTSWITH(deviceId, 'test') OR (is_defined(tags.deviceName) AND STARTSWITH(tags.deviceName, 'test')))";
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 10}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllDevice(searchText: "test");
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenSearchingContinuationGetAllDeviceShouldQueryToIoTHub()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.Is<QueryOptions>(x => x.ContinuationToken == "test")))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 10}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = false"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllDevice(continuationToken: "test");
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenSearchingDisabledDeviceGetAllDeviceShouldQueryToIoTHub()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            const string expectedAdditionalFilter = "AND status = 'disabled'";
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 10}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllDevice(searchStatus: false);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenSearchingEnabledDeviceGetAllDeviceShouldQueryToIoTHub()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            const string expectedAdditionalFilter = "AND status = 'enabled'";
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 10}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllDevice(searchStatus: true);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenSearchingConnectedDeviceGetAllDeviceShouldQueryToIoTHub()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            const string expectedAdditionalFilter = "AND connectionState = 'Connected'";
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 10}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllDevice(searchState: true);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenSearchingDisconnectedDeviceGetAllDeviceShouldQueryToIoTHub()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            const string expectedAdditionalFilter = "AND connectionState = 'Disconnected'";
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 10}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllDevice(searchState: false);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenSearchingTagGetAllDeviceShouldQueryToIoTHub()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            const string expectedAdditionalFilter = "AND is_defined(tags.testKey) AND STARTSWITH(tags.testKey, 'testValue')";
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
-                .ReturnsAsync(new QueryResponse<Twin>(new[]{
-                    new Twin(Guid.NewGuid().ToString())
-                    }, string.Empty));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 10}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
-                It.Is<int>(x => x == 10)))
-                .Returns(mockQuery.Object);
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllDevice(searchTags: new System.Collections.Generic.Dictionary<string, string>
-            {
-                { "testKey", "testValue" }
-            });
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(1, result.Items.Count());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenFailedToDeserializeCountShouldReturnEmpty()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ fakeData: 10}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllDevice();
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(0, result.Items.Count());
-
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenCountReturnsZeroMatchingGetAllDevicesShouldReturnEmpty()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new string[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 0}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetAllDevice();
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(0, result.Items.Count());
-
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetDeviceStateUnderTestExpectedBehavior()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-            var expected = new Device();
-
-            _ = this.mockRegistryManager.Setup(c => c.GetDeviceAsync(It.Is<string>(x => x == deviceId)))
-                .ReturnsAsync(expected);
-
-            // Act
-            var result = await service.GetDevice(deviceId);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(expected, result);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetDeviceShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            _ = this.mockRegistryManager.Setup(c => c.GetDeviceAsync(It.Is<string>(x => x == deviceId)))
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            // Act
-            var act = () => service.GetDevice(deviceId);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetDeviceTwinStateUnderTestExpectedBehavior()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-            var expected = new Twin();
-
-            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == deviceId)))
-                .ReturnsAsync(expected);
-
-            // Act
-            var result = await service.GetDeviceTwin(deviceId);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(expected, result);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetDeviceTwinShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == deviceId)))
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            // Act
-            var act = () => service.GetDeviceTwin(deviceId);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetDeviceTwinWithModuleStateUnderTestExpectedBehavior()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            var mockQuery = this.mockRepository.Create<IQuery>();
-            const bool resultReturned = false;
-
-            _ = mockQuery.SetupGet(c => c.HasMoreResults)
-                .Returns(!resultReturned);
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync())
-                .ReturnsAsync(new Twin[]
-                {
-                    new Twin(Guid.NewGuid().ToString())
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT * FROM devices.modules WHERE devices.modules.moduleId = '$edgeAgent' AND deviceId in ['{deviceId}']")))
-                .Returns(mockQuery.Object);
-
-            // Act
-            var result = await service.GetDeviceTwinWithModule(deviceId);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.IsAssignableFrom<Twin>(result);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetDeviceTwinWithEdgeHubModuleStateUnderTestExpectedBehavior()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            var mockQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync())
-                .ReturnsAsync(new Twin[]
-                {
-                    new Twin(Guid.NewGuid().ToString())
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT * FROM devices.modules WHERE devices.modules.moduleId = '$edgeHub' AND deviceId in ['{deviceId}']"), It.Is<int>(x => x == 1)))
-                .Returns(mockQuery.Object);
-
-            // Act
-            var result = await service.GetDeviceTwinWithEdgeHubModule(deviceId);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.IsAssignableFrom<Twin>(result);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetDeviceTwinWithEdgeHubModule()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            var mockQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync())
-                .ThrowsAsync(new RequestFailedException(""));
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT * FROM devices.modules WHERE devices.modules.moduleId = '$edgeHub' AND deviceId in ['{deviceId}']"), It.Is<int>(x => x == 1)))
-                .Returns(mockQuery.Object);
-
-            // Act
-            var act = async () => await service.GetDeviceTwinWithEdgeHubModule(deviceId);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [TestCase(false, DeviceStatus.Enabled)]
-        [TestCase(true, DeviceStatus.Enabled)]
-        [TestCase(false, DeviceStatus.Disabled)]
-        [TestCase(true, DeviceStatus.Disabled)]
-        public async Task CreateDeviceWithTwinStateUnderTestExpectedBehavior(bool isEdge, DeviceStatus isEnabled)
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-            var twin = new Twin();
-
-            _ = this.mockRegistryManager
-                .Setup(c => c.AddDeviceWithTwinAsync(It.Is<Device>(x => x.Id == deviceId
-                                                                    && x.Capabilities.IotEdge == isEdge
-                                                                    && x.Status == isEnabled),
-                                                     It.Is<Twin>(x => x == twin)))
-                .ReturnsAsync(new BulkRegistryOperationResult
-                {
-                    IsSuccessful = true
-                });
-
-            // Act
-            var result = await service.CreateDeviceWithTwin(
-                deviceId,
-                isEdge,
-                twin,
-                isEnabled);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.IsTrue(result.IsSuccessful);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task CreateDeviceWithTwinShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-            var twin = new Twin();
-
-            _ = this.mockRegistryManager
-                .Setup(c => c.AddDeviceWithTwinAsync(It.Is<Device>(x => x.Id == deviceId),
-                    It.Is<Twin>(x => x == twin)))
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            // Act
-            var act = () => service.CreateDeviceWithTwin(deviceId, true, twin);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task DeleteDeviceStateUnderTestExpectedBehavior()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            _ = this.mockRegistryManager.Setup(c => c.RemoveDeviceAsync(It.Is<string>(x => x == deviceId)))
-                .Returns(Task.CompletedTask);
-
-            // Act
-            await service.DeleteDevice(deviceId);
-
-            // Assert
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task DeleteDeviceShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            _ = this.mockRegistryManager.Setup(c => c.RemoveDeviceAsync(It.Is<string>(x => x == deviceId)))
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            // Act
-            var act = () => service.DeleteDevice(deviceId);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task UpdateDeviceStateUnderTestExpectedBehavior()
-        {
-            // Arrange
-            var service = CreateService();
-            var device = new Device();
-
-            _ = this.mockRegistryManager.Setup(c => c.UpdateDeviceAsync(It.Is<Device>(x => x == device)))
-                .ReturnsAsync(new Device());
-
-            // Act
-            var result = await service.UpdateDevice(device);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreNotEqual(result, device);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task UpdateDeviceShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
-        {
-            // Arrange
-            var service = CreateService();
-            var device = new Device();
-
-            _ = this.mockRegistryManager.Setup(c => c.UpdateDeviceAsync(It.Is<Device>(x => x == device)))
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            // Act
-            var act = () => service.UpdateDevice(device);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task UpdateDeviceTwinStateUnderTestExpectedBehavior()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            var twin = new Twin(deviceId)
-            {
-                ETag = Guid.NewGuid().ToString(),
-            };
-
-            _ = this.mockRegistryManager.Setup(c => c.UpdateTwinAsync(
-                It.Is<string>(x => x == deviceId),
-                It.Is<Twin>(x => x == twin),
-                It.Is<string>(x => x == twin.ETag)))
-                .ReturnsAsync(new Twin());
-
-            // Act
-            var result = await service.UpdateDeviceTwin(twin);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreNotEqual(result, twin);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task UpdateDeviceTwinShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            var twin = new Twin(deviceId)
-            {
-                ETag = Guid.NewGuid().ToString(),
-            };
-
-            _ = this.mockRegistryManager.Setup(c => c.UpdateTwinAsync(
-                    It.Is<string>(x => x == deviceId),
-                    It.Is<Twin>(x => x == twin),
-                    It.Is<string>(x => x == twin.ETag)))
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            // Act
-            var act = () => service.UpdateDeviceTwin(twin);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task ExecuteC2DMethodStateUnderTestExpectedBehavior()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            var method = new CloudToDeviceMethod(Guid.NewGuid().ToString());
-
-            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
-                It.Is<string>(x => x == deviceId),
-                It.Is<string>(x => x == "$edgeAgent"),
-                It.Is<CloudToDeviceMethod>(x => x == method),
-                It.IsAny<CancellationToken>()))
-                .ReturnsAsync(new CloudToDeviceMethodResult
-                {
-                    Status = 200
-                });
-
-            // Act
-            var result = await service.ExecuteC2DMethod(deviceId, method);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(200, result.Status);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task ExecuteC2DMethodShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            var method = new CloudToDeviceMethod(Guid.NewGuid().ToString());
-
-            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
-                    It.Is<string>(x => x == deviceId),
-                    It.Is<string>(x => x == "$edgeAgent"),
-                    It.Is<CloudToDeviceMethod>(x => x == method),
-                    It.IsAny<CancellationToken>()))
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            // Act
-            var act = () => service.ExecuteC2DMethod(deviceId, method);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task ExecuteCustomCommandC2DMethodShouldReturn200()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-            var moduleName = Guid.NewGuid().ToString();
-
-            var method = new CloudToDeviceMethod(Guid.NewGuid().ToString());
-
-            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
-                It.Is<string>(x => x.Equals(deviceId, StringComparison.Ordinal)),
-                It.Is<string>(x => x.Equals(moduleName, StringComparison.Ordinal)),
-                It.Is<CloudToDeviceMethod>(x => x == method),
-                It.IsAny<CancellationToken>()))
-                .ReturnsAsync(new CloudToDeviceMethodResult
-                {
-                    Status = 200
-                });
-
-            // Act
-            var result = await service.ExecuteCustomCommandC2DMethod(deviceId, moduleName, method);
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(200, result.Status);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task ExecuteCustomCommandC2DMethodShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-            var moduleName = Guid.NewGuid().ToString();
-
-            var method = new CloudToDeviceMethod(Guid.NewGuid().ToString());
-
-            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
-                It.Is<string>(x => x.Equals(deviceId, StringComparison.Ordinal)),
-                It.Is<string>(x => x.Equals(moduleName, StringComparison.Ordinal)),
-                It.Is<CloudToDeviceMethod>(x => x == method),
-                It.IsAny<CancellationToken>()))
-                .ThrowsAsync(new RequestFailedException(""));
-
-            // Act
-            var result = async () => await service.ExecuteCustomCommandC2DMethod(deviceId, moduleName, method);
-
-            // Assert
-            _ = await result.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetEdgeDeviceLogsMustReturnLogsWhen200IsReturned()
-        {
-            // Arrange
-            var deviceId = Guid.NewGuid().ToString();
-
-            var edgeModule = new IoTEdgeModule
-            {
-                ModuleName = Guid.NewGuid().ToString()
-            };
-
-            var method = new CloudToDeviceMethod(CloudToDeviceMethods.GetModuleLogs);
-
-            var payload = JsonConvert.SerializeObject(new
-            {
-                schemaVersion = "1.0",
-                items = new[]
-                {
-                    new
-                    {
-                        id = edgeModule.ModuleName,
-                        filter = new
-                        {
-                            tail = 300
-                        }
-                    }
-                },
-                encoding = "none",
-                contentType = "json"
-            });
-
-            _ = method.SetPayloadJson(payload);
-
-
-            var logger = Mock.Of<ILogger<ExternalDeviceService>>();
-
-            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
-                It.Is<string>(x => x == deviceId),
-                It.Is<string>(x => x == "$edgeAgent"),
-                It.Is<CloudToDeviceMethod>(x => x.MethodName == method.MethodName && x.GetPayloadAsJson() == payload),
-                It.IsAny<CancellationToken>()))
-                .ReturnsAsync(new CloudToDeviceMethodResult
-                {
-                    Status = 200
-                });
-
-            var deviceService = new ExternalDeviceService(
-                logger,
-                this.mockRegistryManager.Object,
-                this.mockServiceClient.Object,
-                this.mockDeviceModelRepository.Object,
-                this.mockRegistryProvider.Object);
-
-            // Act
-            var result = await deviceService.GetEdgeDeviceLogs(deviceId, edgeModule);
-
-            // Assert
-            _ = result.Should().NotBeNull();
-            _ = result.Count().Should().Be(0);
-        }
-
-        [Test]
-        public async Task GetEdgeDeviceLogsMustReturnEmptyLogsWhenNot200IsReturned()
-        {
-            // Arrange
-            var deviceId = Guid.NewGuid().ToString();
-
-            var edgeModule = new IoTEdgeModule
-            {
-                ModuleName = Guid.NewGuid().ToString()
-            };
-
-            var method = new CloudToDeviceMethod(CloudToDeviceMethods.GetModuleLogs);
-
-            var payload = JsonConvert.SerializeObject(new
-            {
-                schemaVersion = "1.0",
-                items = new[]
-                {
-                    new
-                    {
-                        id = edgeModule.ModuleName,
-                        filter = new
-                        {
-                            tail = 300
-                        }
-                    }
-                },
-                encoding = "none",
-                contentType = "json"
-            });
-
-            _ = method.SetPayloadJson(payload);
-
-
-            var logger = Mock.Of<ILogger<ExternalDeviceService>>();
-
-            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
-                It.Is<string>(x => x == deviceId),
-                It.Is<string>(x => x == "$edgeAgent"),
-                It.Is<CloudToDeviceMethod>(x => x.MethodName == method.MethodName && x.GetPayloadAsJson() == payload),
-                It.IsAny<CancellationToken>()))
-                .ReturnsAsync(new CloudToDeviceMethodResult
-                {
-                    Status = 500
-                });
-
-            var deviceService = new ExternalDeviceService(
-                logger,
-                this.mockRegistryManager.Object,
-                this.mockServiceClient.Object,
-                this.mockDeviceModelRepository.Object,
-                this.mockRegistryProvider.Object);
-
-            // Act
-            var result = await deviceService.GetEdgeDeviceLogs(deviceId, edgeModule);
-
-            // Assert
-            _ = result.Should().NotBeNull();
-            _ = result.Count().Should().Be(0);
-        }
-
-        [Test]
-        public async Task GetEdgeDeviceLogsShouldInternalServerErrorExceptionWhenIssueOccurs()
-        {
-            // Arrange
-            var deviceId = Guid.NewGuid().ToString();
-
-            var edgeModule = new IoTEdgeModule
-            {
-                ModuleName = Guid.NewGuid().ToString()
-            };
-
-            var method = new CloudToDeviceMethod(CloudToDeviceMethods.GetModuleLogs);
-
-            var payload = JsonConvert.SerializeObject(new
-            {
-                schemaVersion = "1.0",
-                items = new[]
-                {
-                    new
-                    {
-                        id = edgeModule.ModuleName,
-                        filter = new
-                        {
-                            tail = 300
-                        }
-                    }
-                },
-                encoding = "none",
-                contentType = "json"
-            });
-
-            _ = method.SetPayloadJson(payload);
-
-            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
-                    It.Is<string>(x => x == deviceId),
-                    It.Is<string>(x => x == "$edgeAgent"),
-                    It.Is<CloudToDeviceMethod>(x => x.MethodName == method.MethodName && x.GetPayloadAsJson() == payload),
-                    It.IsAny<CancellationToken>()))
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            var deviceService = CreateService();
-
-            // Act
-            var act = () => deviceService.GetEdgeDeviceLogs(deviceId, edgeModule);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetDevicesCountShouldReturnDevicesCount()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 1}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'LoRa Concentrator')")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetDevicesCount();
-
-            // Assert
-            _ = result.Should().Be(1);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetDevicesCountShouldInternalServerErrorExceptionWhenIssueOccursOnGettingDevicesCount()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'LoRa Concentrator')")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var act = () => service.GetDevicesCount();
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetConnectedDevicesCountCountShouldReturnConnectedDevicesCount()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 1}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND connectionState = 'Connected' AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'LoRa Concentrator')")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetConnectedDevicesCount();
-
-            // Assert
-            _ = result.Should().Be(1);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetConnectedDevicesCountShouldInternalServerErrorExceptionWhenIssueOccursOnGettingConnectedDevicesCount()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND connectionState = 'Connected' AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'LoRa Concentrator')")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var act = () => service.GetConnectedDevicesCount();
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetEdgeDevicesCountCountShouldReturnEdgeDevicesCount()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 1}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetEdgeDevicesCount();
-
-            // Assert
-            _ = result.Should().Be(1);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetEdgeDevicesCountShouldInternalServerErrorExceptionWhenIssueOccursOnGettingEdgeDevicesCount()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var act = () => service.GetEdgeDevicesCount();
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetConnectedEdgeDevicesCountCountShouldReturnConnectedEdgeDevicesCount()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 1}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true AND connectionState = 'Connected'")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetConnectedEdgeDevicesCount();
-
-            // Assert
-            _ = result.Should().Be(1);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetConnectedEdgeDevicesCountShouldInternalServerErrorExceptionWhenIssueOccursOnGettingConnectedEdgeDevicesCount()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true AND connectionState = 'Connected'")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var act = () => service.GetConnectedEdgeDevicesCount();
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetConcentratorsCountShouldReturnConcentratorsCount()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new[]
-                {
-                    /*lang=json*/
-                    "{ totalNumber: 1}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND devices.tags.deviceType = 'LoRa Concentrator'")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var result = await service.GetConcentratorsCount();
-
-            // Assert
-            _ = result.Should().Be(1);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetConcentratorsCountShouldInternalServerErrorExceptionWhenIssueOccursOnGettingConcentratorsCount()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockCountQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND devices.tags.deviceType = 'LoRa Concentrator'")))
-                .Returns(mockCountQuery.Object);
-
-            // Act
-            var act = () => service.GetConcentratorsCount();
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetEnrollmentCredentialsShouldReturnEnrollmentCredentials()
-        {
-            // Arrange
-
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-            var mockTwin = new Twin(deviceId);
-            mockTwin.Tags["modelId"] = "bbb";
-
-            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == deviceId)))
-                .ReturnsAsync(mockTwin);
-
-            var mockRegistrationCredentials = new EnrollmentCredentials
-            {
-                RegistrationID = "aaa",
-                SymmetricKey = "dfhjkfdgh"
-            };
-
-            _ = this.mockDeviceModelRepository.Setup(c => c.GetByIdAsync("bbb"))
-                .ReturnsAsync(new Portal.Domain.Entities.DeviceModel
-                {
-                    Id = "bbb",
-                    Name = "ccc"
-                });
-
-            _ = this.mockRegistryProvider.Setup(c => c.GetEnrollmentCredentialsAsync(deviceId, "ccc"))
-                .ReturnsAsync(mockRegistrationCredentials);
-
-            // Act
-            var enrollmentCredentials = await service.GetEnrollmentCredentials(deviceId);
-
-            // Assert
-            _ = enrollmentCredentials.Should().BeEquivalentTo(mockRegistrationCredentials);
-
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenDeviceTypePropertyNotExistGetEnrollmentCredentialsShouldThrowResourceNotFoundException()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-            var mockTwin = new Twin(deviceId);
-
-
-            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == deviceId)))
-                .ReturnsAsync(mockTwin);
-
-            // Act
-            var act = () => service.GetEnrollmentCredentials(deviceId);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<ResourceNotFoundException>();
-
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenDeviceNotExistGetEnrollmentCredentialsShouldThrowResourceNotFoundException()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-
-            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == deviceId)))
-                .ReturnsAsync((Twin)null);
-
-            // Act
-            var act = () => service.GetEnrollmentCredentials(deviceId);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<ResourceNotFoundException>();
-
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task WhenUnableToGetModelGetEnrollmentCredentialsShouldThrowInternalServerErrorException()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-            var mockTwin = new Twin(deviceId);
-            mockTwin.Tags["modelId"] = "bbb";
-
-            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == deviceId)))
-                .ReturnsAsync(mockTwin);
-
-            _ = this.mockDeviceModelRepository.Setup(c => c.GetByIdAsync("bbb"))
-                .ReturnsAsync(new Portal.Domain.Entities.DeviceModel
-                {
-                    Id = "bbb",
-                    Name = "ccc"
-                });
-
-            _ = this.mockRegistryProvider.Setup(c => c.GetEnrollmentCredentialsAsync(deviceId, "ccc"))
-                .Throws(new RequestFailedException("test"));
-
-            // Act
-            var act = () => service.GetEnrollmentCredentials(deviceId);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task CreateNewTwinFromDeviceIdShouldReturnTwin()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-            _ = this.mockRegistryManager.Setup(c => c.GetDeviceAsync(It.IsAny<string>()))
-                .ReturnsAsync((Device)null);
-
-            // Act
-            var twin = await service.CreateNewTwinFromDeviceId(deviceId);
-
-            // Assert
-            Assert.AreEqual(deviceId, twin.DeviceId);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task CreateNewTwinFromDeviceIdShouldThrowInternalErrorExceptionWhenDeviceAlreadyExists()
-        {
-            // Arrange
-            var service = CreateService();
-            var deviceId = Guid.NewGuid().ToString();
-            _ = this.mockRegistryManager.Setup(c => c.GetDeviceAsync(It.IsAny<string>()))
-                .ReturnsAsync(new Device());
-
-            // Act
-            var act = () => service.CreateNewTwinFromDeviceId(deviceId);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<DeviceAlreadyExistsException>();
-
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetEdgeDeviceCredentialsShouldReturnEnrollmentCredentials()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockRegistrationCredentials = new EnrollmentCredentials
-            {
-                RegistrationID = "aaa",
-                SymmetricKey = "dfhjkfdgh"
-            };
-
-            var mockTwin = new Twin("aaa");
-
-            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == mockTwin.DeviceId)))
-                .ReturnsAsync(mockTwin);
-
-            _ = this.mockRegistryProvider.Setup(c => c.GetEnrollmentCredentialsAsync("aaa", It.IsAny<string>()))
-                .ReturnsAsync(mockRegistrationCredentials);
-
-            // Act
-            var result = await service.GetEdgeDeviceCredentials("aaa");
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.AreEqual(mockRegistrationCredentials, result);
-
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public void WhenDeviceTwinIsNullGetEdgeDeviceCredentialsShouldThrowResourceNotFoundException()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockTwin = new Twin("aaa");
-
-            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == mockTwin.DeviceId)))
-                .ReturnsAsync(value: null);
-
-            // Act
-
-            // Assert
-            _ = Assert.ThrowsAsync<ResourceNotFoundException>(() => service.GetEdgeDeviceCredentials("aaa"));
-
-            this.mockRepository.VerifyAll();
-        }
-
-
-        [Test]
-        public async Task GetAllGatewayIDExpectedBehaviorShouldReturnList()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new[]
-                {
-                    /*lang=json*/
-                    "{ deviceId: 'value1'}",
-                    /*lang=json*/
-                    "{ deviceId: 'value2'}",
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT DeviceID FROM devices.modules WHERE devices.modules.moduleId = 'LoRaWanNetworkSrvModule'")))
-                .Returns(mockQuery.Object);
-
-            // Act
-            var result = await service.GetAllGatewayID();
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.IsAssignableFrom<List<string>>(result);
-            Assert.AreEqual(2, result.Count);
-            Assert.AreEqual("value1", result[0]);
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetAllGatewayIDIssueOccuringShouldThrowInternalServerErrorException()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT DeviceID FROM devices.modules WHERE devices.modules.moduleId = 'LoRaWanNetworkSrvModule'")))
-                .Returns(mockQuery.Object);
-
-            // Act
-            var act = () => service.GetAllGatewayID();
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetDevicesToExportExpectedBehaviorShouldReturnList()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ReturnsAsync(new List<string>
-                {
-                    /*lang=json*/
-                    "{ \"deviceId\": \"000001\", \"tags\": { \"deviceName\": \"DeviceExport01\", \"supportLoRaFeatures\": \"true\", \"modelId\": \"01a440ca-9a67-4334-84a8-0f39995612a4\", \"Tag1\": \"Tag1-1\"}, \"desired\": { \"Property1\": \"123\", \"Property2\": \"456\" }}",
-                    /*lang=json*/
-                    "{ \"deviceId\": \"000002\", \"tags\": { \"deviceName\": \"DeviceExport02\", \"supportLoRaFeatures\": \"true\", \"modelId\": \"01a440ca-9a67-4334-84a8-0f39995612a4\", \"Tag1\": \"Tag1-2\"}, \"desired\": { \"Property1\": \"789\", \"Property2\": \"000\" }}"
-                });
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT deviceId, tags, properties.desired FROM devices WHERE (NOT IS_DEFINED (tags.deviceType) OR tags.deviceType <> 'LoRa Concentrator') AND (capabilities.iotEdge = false)")))
-                .Returns(mockQuery.Object);
-
-            // Act
-            var result = await service.GetDevicesToExport();
-
-            // Assert
-            Assert.IsNotNull(result);
-            Assert.IsAssignableFrom<List<string>>(result);
-            Assert.AreEqual(2, result.Count());
-            var deviceObjectResult = JsonNode.Parse(result.First())!;
-            Assert.AreEqual("000001", deviceObjectResult["deviceId"].ToString());
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task GetDevicesToExportIssueOccuringShouldThrowInternalServerErrorException()
-        {
-            // Arrange
-            var service = CreateService();
-
-            var mockQuery = this.mockRepository.Create<IQuery>();
-
-            _ = mockQuery.Setup(c => c.GetNextAsJsonAsync())
-                .ThrowsAsync(new RequestFailedException("test"));
-
-            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
-                It.Is<string>(x => x == $"SELECT deviceId, tags, properties.desired FROM devices WHERE (NOT IS_DEFINED (tags.deviceType) OR tags.deviceType <> 'LoRa Concentrator') AND (capabilities.iotEdge = false)")))
-                .Returns(mockQuery.Object);
-
-            // Act
-            var act = () => service.GetDevicesToExport();
-
-            // Assert
-            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task RetrieveLastConfigurationTwinHasNoConfigurationShouldReturnNull()
-        {
-            // Arrange
-            var service = CreateService();
-            var mockTwin = new Twin("aaa");
-
-            // Act
-            var result = await service.RetrieveLastConfiguration(mockTwin);
-
-            // Assert            
-            Assert.IsNull(result);
-        }
-
-        [Test]
-        public async Task CreateDeviceModel_AnyExternalDeviceModelDto_NotImplementedExceptionIsThrown()
-        {
-            // Arrange
+    using AzureIoTHub.Portal.Server.Services;
+    using AzureIoTHub.Portal.Shared.Constants;
+    using FluentAssertions;
+    using Microsoft.Azure.Devices;
+    using Microsoft.Azure.Devices.Common.Exceptions;
+    using Microsoft.Azure.Devices.Shared;
+    using Microsoft.Extensions.Logging;
+    using Models.v10;
+    using Moq;
+    using Newtonsoft.Json;
+    using NUnit.Framework;
+    using Shared.Models.v10;
+
+    [TestFixture]
+    public class ExternalDeviceServiceTests
+    {
+        private MockRepository mockRepository;
+
+        private Mock<RegistryManager> mockRegistryManager;
+        private Mock<ServiceClient> mockServiceClient;
+        private Mock<ILogger<ExternalDeviceService>> mockLogger;
+        private Mock<IDeviceRegistryProvider> mockRegistryProvider;
+        private Mock<IDeviceModelRepository> mockDeviceModelRepository;
+
+        private AutoFixture.Fixture Fixture { get; } = new();
+
+        [SetUp]
+        public void SetUp()
+        {
+            this.mockRepository = new MockRepository(MockBehavior.Strict);
+
+            this.mockRegistryManager = this.mockRepository.Create<RegistryManager>();
+            this.mockServiceClient = this.mockRepository.Create<ServiceClient>();
+            this.mockLogger = this.mockRepository.Create<ILogger<ExternalDeviceService>>();
+            this.mockRegistryProvider = this.mockRepository.Create<IDeviceRegistryProvider>();
+            this.mockDeviceModelRepository = this.mockRepository.Create<IDeviceModelRepository>();
+        }
+
+        private ExternalDeviceService CreateService()
+        {
+            return new ExternalDeviceService(
+                this.mockLogger.Object,
+                this.mockRegistryManager.Object,
+                this.mockServiceClient.Object,
+                this.mockDeviceModelRepository.Object,
+                this.mockRegistryProvider.Object);
+        }
+
+        [Test]
+        public async Task GetAllEdgeDeviceStateUnderTestExpectedBehavior()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 1}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = true"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllEdgeDevice();
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetAllEdgeDevice_SearchStatusIsTrue_ReturnsEdgeDevicesWithEnabledStatus()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 1}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = true AND status = 'enabled'"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true AND status = 'enabled'")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllEdgeDevice(searchStatus: true);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetAllEdgeDevice_SearchStatusIsFalse_ReturnsEdgeDevicesWithDisabledStatus()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 1}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = true AND status = 'disabled'"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true AND status = 'disabled'")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllEdgeDevice(searchStatus: false);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetAllEdgeDevice_SearchTextIsNotNull_ReturnsEdgeDevices()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            var searchText = Guid.NewGuid().ToString();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 1}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = true AND (STARTSWITH(deviceId, '{searchText}') OR (is_defined(tags.deviceName) AND STARTSWITH(tags.deviceName, '{searchText}')))"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true AND (STARTSWITH(deviceId, '{searchText}') OR (is_defined(tags.deviceName) AND STARTSWITH(tags.deviceName, '{searchText}')))")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllEdgeDevice(searchText: searchText );
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetAllEdgeDevice_CountWithoutTotalNumber_ReturnsEmptyEdgeDevices()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ toto: 1}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllEdgeDevice();
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(0, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetAllEdgeDevice_CountTotalNumberEqualZero_ReturnsEmptyEdgeDevices()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 0}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllEdgeDevice();
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(0, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+
+        [Test]
+        public async Task GetAllEdgeDeviceShouldThrowInternalServerErrorExceptionWhenGettingDevices()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 1}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = true"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var act = () => service.GetAllEdgeDevice();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetAllEdgeDeviceShouldThrowInternalServerErrorExceptionWhenGettingDevicesCount()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var act = () => service.GetAllEdgeDevice();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetAllDeviceStateUnderTestExpectedBehavior()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 10}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = false"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllDevice();
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetAllDeviceShouldThrowInternalServerErrorExceptionWhenIssueOccursOnGettingDevicesCount()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var act = () => service.GetAllDevice();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetDeviceTwinWhithModuleShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockQuery.Setup(c => c.HasMoreResults)
+                .Returns(true);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                    It.Is<string>(x => x == $"SELECT * FROM devices.modules WHERE devices.modules.moduleId = '$edgeAgent' AND deviceId in ['{deviceId}']")))
+                .Returns(mockQuery.Object);
+
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync())
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            // Act
+            var act = () => service.GetDeviceTwinWithModule(deviceId);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public void GetDeviceTwinWhithModule_EqualZero_ReturnsEmptyDevices()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            // Act
+            var result = () => service.GetDeviceTwinWithModule(deviceId);
+
+            // Assert
+            Assert.IsNotNull(result);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetAllDeviceShouldThrowInternalServerErrorExceptionWhenIssueOccursOneGettingDevices()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 10}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                    It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = false"),
+                    It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var act = () => service.GetAllDevice();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenSpecifyingFilterToDeviceTypeGetAllDeviceShouldQueryToIoTHub()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            const string expectedAdditionalFilter = "AND devices.tags.deviceType = 'filteredType'";
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 10}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllDevice(filterDeviceType: "filteredType");
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenExcludingDeviceTypeGetAllDeviceShouldQueryToIoTHub()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            const string expectedAdditionalFilter = "AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'filteredType')";
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 10}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllDevice(excludeDeviceType: "filteredType");
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenSearchingDeviceGetAllDeviceShouldQueryToIoTHub()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            const string expectedAdditionalFilter = "AND (STARTSWITH(deviceId, 'test') OR (is_defined(tags.deviceName) AND STARTSWITH(tags.deviceName, 'test')))";
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 10}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllDevice(searchText: "test");
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenSearchingContinuationGetAllDeviceShouldQueryToIoTHub()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.Is<QueryOptions>(x => x.ContinuationToken == "test")))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 10}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT * FROM devices WHERE devices.capabilities.iotEdge = false"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllDevice(continuationToken: "test");
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenSearchingDisabledDeviceGetAllDeviceShouldQueryToIoTHub()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            const string expectedAdditionalFilter = "AND status = 'disabled'";
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 10}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllDevice(searchStatus: false);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenSearchingEnabledDeviceGetAllDeviceShouldQueryToIoTHub()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            const string expectedAdditionalFilter = "AND status = 'enabled'";
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 10}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllDevice(searchStatus: true);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenSearchingConnectedDeviceGetAllDeviceShouldQueryToIoTHub()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            const string expectedAdditionalFilter = "AND connectionState = 'Connected'";
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 10}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllDevice(searchState: true);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenSearchingDisconnectedDeviceGetAllDeviceShouldQueryToIoTHub()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            const string expectedAdditionalFilter = "AND connectionState = 'Disconnected'";
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 10}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllDevice(searchState: false);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenSearchingTagGetAllDeviceShouldQueryToIoTHub()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            const string expectedAdditionalFilter = "AND is_defined(tags.testKey) AND STARTSWITH(tags.testKey, 'testValue')";
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync(It.IsAny<QueryOptions>()))
+                .ReturnsAsync(new QueryResponse<Twin>(new[]{
+                    new Twin(Guid.NewGuid().ToString())
+                    }, string.Empty));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 10}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT * FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}"),
+                It.Is<int>(x => x == 10)))
+                .Returns(mockQuery.Object);
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false {expectedAdditionalFilter}")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllDevice(searchTags: new System.Collections.Generic.Dictionary<string, string>
+            {
+                { "testKey", "testValue" }
+            });
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(1, result.Items.Count());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenFailedToDeserializeCountShouldReturnEmpty()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ fakeData: 10}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllDevice();
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(0, result.Items.Count());
+
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenCountReturnsZeroMatchingGetAllDevicesShouldReturnEmpty()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = this.mockLogger.Setup(x => x.Log(It.IsAny<LogLevel>(), It.IsAny<EventId>(), It.IsAny<It.IsAnyType>(), It.IsAny<Exception>(), It.IsAny<Func<It.IsAnyType, Exception, string>>()));
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new string[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 0}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetAllDevice();
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(0, result.Items.Count());
+
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetDeviceStateUnderTestExpectedBehavior()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+            var expected = new Device();
+
+            _ = this.mockRegistryManager.Setup(c => c.GetDeviceAsync(It.Is<string>(x => x == deviceId)))
+                .ReturnsAsync(expected);
+
+            // Act
+            var result = await service.GetDevice(deviceId);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(expected, result);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetDeviceShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            _ = this.mockRegistryManager.Setup(c => c.GetDeviceAsync(It.Is<string>(x => x == deviceId)))
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            // Act
+            var act = () => service.GetDevice(deviceId);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetDeviceTwinStateUnderTestExpectedBehavior()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+            var expected = new Twin();
+
+            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == deviceId)))
+                .ReturnsAsync(expected);
+
+            // Act
+            var result = await service.GetDeviceTwin(deviceId);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(expected, result);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetDeviceTwinShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == deviceId)))
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            // Act
+            var act = () => service.GetDeviceTwin(deviceId);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetDeviceTwinWithModuleStateUnderTestExpectedBehavior()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            var mockQuery = this.mockRepository.Create<IQuery>();
+            const bool resultReturned = false;
+
+            _ = mockQuery.SetupGet(c => c.HasMoreResults)
+                .Returns(!resultReturned);
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync())
+                .ReturnsAsync(new Twin[]
+                {
+                    new Twin(Guid.NewGuid().ToString())
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT * FROM devices.modules WHERE devices.modules.moduleId = '$edgeAgent' AND deviceId in ['{deviceId}']")))
+                .Returns(mockQuery.Object);
+
+            // Act
+            var result = await service.GetDeviceTwinWithModule(deviceId);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.IsAssignableFrom<Twin>(result);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetDeviceTwinWithEdgeHubModuleStateUnderTestExpectedBehavior()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            var mockQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync())
+                .ReturnsAsync(new Twin[]
+                {
+                    new Twin(Guid.NewGuid().ToString())
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT * FROM devices.modules WHERE devices.modules.moduleId = '$edgeHub' AND deviceId in ['{deviceId}']"), It.Is<int>(x => x == 1)))
+                .Returns(mockQuery.Object);
+
+            // Act
+            var result = await service.GetDeviceTwinWithEdgeHubModule(deviceId);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.IsAssignableFrom<Twin>(result);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetDeviceTwinWithEdgeHubModule()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            var mockQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockQuery.Setup(c => c.GetNextAsTwinAsync())
+                .ThrowsAsync(new RequestFailedException(""));
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT * FROM devices.modules WHERE devices.modules.moduleId = '$edgeHub' AND deviceId in ['{deviceId}']"), It.Is<int>(x => x == 1)))
+                .Returns(mockQuery.Object);
+
+            // Act
+            var act = async () => await service.GetDeviceTwinWithEdgeHubModule(deviceId);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [TestCase(false, DeviceStatus.Enabled)]
+        [TestCase(true, DeviceStatus.Enabled)]
+        [TestCase(false, DeviceStatus.Disabled)]
+        [TestCase(true, DeviceStatus.Disabled)]
+        public async Task CreateDeviceWithTwinStateUnderTestExpectedBehavior(bool isEdge, DeviceStatus isEnabled)
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+            var twin = new Twin();
+
+            _ = this.mockRegistryManager
+                .Setup(c => c.AddDeviceWithTwinAsync(It.Is<Device>(x => x.Id == deviceId
+                                                                    && x.Capabilities.IotEdge == isEdge
+                                                                    && x.Status == isEnabled),
+                                                     It.Is<Twin>(x => x == twin)))
+                .ReturnsAsync(new BulkRegistryOperationResult
+                {
+                    IsSuccessful = true
+                });
+
+            // Act
+            var result = await service.CreateDeviceWithTwin(
+                deviceId,
+                isEdge,
+                twin,
+                isEnabled);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.IsTrue(result.IsSuccessful);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task CreateDeviceWithTwinShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+            var twin = new Twin();
+
+            _ = this.mockRegistryManager
+                .Setup(c => c.AddDeviceWithTwinAsync(It.Is<Device>(x => x.Id == deviceId),
+                    It.Is<Twin>(x => x == twin)))
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            // Act
+            var act = () => service.CreateDeviceWithTwin(deviceId, true, twin);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task DeleteDeviceStateUnderTestExpectedBehavior()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            _ = this.mockRegistryManager.Setup(c => c.RemoveDeviceAsync(It.Is<string>(x => x == deviceId)))
+                .Returns(Task.CompletedTask);
+
+            // Act
+            await service.DeleteDevice(deviceId);
+
+            // Assert
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task DeleteDeviceShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            _ = this.mockRegistryManager.Setup(c => c.RemoveDeviceAsync(It.Is<string>(x => x == deviceId)))
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            // Act
+            var act = () => service.DeleteDevice(deviceId);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task UpdateDeviceStateUnderTestExpectedBehavior()
+        {
+            // Arrange
+            var service = CreateService();
+            var device = new Device();
+
+            _ = this.mockRegistryManager.Setup(c => c.UpdateDeviceAsync(It.Is<Device>(x => x == device)))
+                .ReturnsAsync(new Device());
+
+            // Act
+            var result = await service.UpdateDevice(device);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreNotEqual(result, device);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task UpdateDeviceShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
+        {
+            // Arrange
+            var service = CreateService();
+            var device = new Device();
+
+            _ = this.mockRegistryManager.Setup(c => c.UpdateDeviceAsync(It.Is<Device>(x => x == device)))
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            // Act
+            var act = () => service.UpdateDevice(device);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task UpdateDeviceTwinStateUnderTestExpectedBehavior()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            var twin = new Twin(deviceId)
+            {
+                ETag = Guid.NewGuid().ToString(),
+            };
+
+            _ = this.mockRegistryManager.Setup(c => c.UpdateTwinAsync(
+                It.Is<string>(x => x == deviceId),
+                It.Is<Twin>(x => x == twin),
+                It.Is<string>(x => x == twin.ETag)))
+                .ReturnsAsync(new Twin());
+
+            // Act
+            var result = await service.UpdateDeviceTwin(twin);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreNotEqual(result, twin);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task UpdateDeviceTwinShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            var twin = new Twin(deviceId)
+            {
+                ETag = Guid.NewGuid().ToString(),
+            };
+
+            _ = this.mockRegistryManager.Setup(c => c.UpdateTwinAsync(
+                    It.Is<string>(x => x == deviceId),
+                    It.Is<Twin>(x => x == twin),
+                    It.Is<string>(x => x == twin.ETag)))
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            // Act
+            var act = () => service.UpdateDeviceTwin(twin);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task ExecuteC2DMethodStateUnderTestExpectedBehavior()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            var method = new CloudToDeviceMethod(Guid.NewGuid().ToString());
+
+            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
+                It.Is<string>(x => x == deviceId),
+                It.Is<string>(x => x == "$edgeAgent"),
+                It.Is<CloudToDeviceMethod>(x => x == method),
+                It.IsAny<CancellationToken>()))
+                .ReturnsAsync(new CloudToDeviceMethodResult
+                {
+                    Status = 200
+                });
+
+            // Act
+            var result = await service.ExecuteC2DMethod(deviceId, method);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(200, result.Status);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task ExecuteC2DMethodShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            var method = new CloudToDeviceMethod(Guid.NewGuid().ToString());
+
+            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
+                    It.Is<string>(x => x == deviceId),
+                    It.Is<string>(x => x == "$edgeAgent"),
+                    It.Is<CloudToDeviceMethod>(x => x == method),
+                    It.IsAny<CancellationToken>()))
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            // Act
+            var act = () => service.ExecuteC2DMethod(deviceId, method);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task ExecuteCustomCommandC2DMethodShouldReturn200()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+            var moduleName = Guid.NewGuid().ToString();
+
+            var method = new CloudToDeviceMethod(Guid.NewGuid().ToString());
+
+            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
+                It.Is<string>(x => x.Equals(deviceId, StringComparison.Ordinal)),
+                It.Is<string>(x => x.Equals(moduleName, StringComparison.Ordinal)),
+                It.Is<CloudToDeviceMethod>(x => x == method),
+                It.IsAny<CancellationToken>()))
+                .ReturnsAsync(new CloudToDeviceMethodResult
+                {
+                    Status = 200
+                });
+
+            // Act
+            var result = await service.ExecuteCustomCommandC2DMethod(deviceId, moduleName, method);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(200, result.Status);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task ExecuteCustomCommandC2DMethodShouldThrowInternalServerErrorExceptionWhenIssueOccurs()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+            var moduleName = Guid.NewGuid().ToString();
+
+            var method = new CloudToDeviceMethod(Guid.NewGuid().ToString());
+
+            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
+                It.Is<string>(x => x.Equals(deviceId, StringComparison.Ordinal)),
+                It.Is<string>(x => x.Equals(moduleName, StringComparison.Ordinal)),
+                It.Is<CloudToDeviceMethod>(x => x == method),
+                It.IsAny<CancellationToken>()))
+                .ThrowsAsync(new RequestFailedException(""));
+
+            // Act
+            var result = async () => await service.ExecuteCustomCommandC2DMethod(deviceId, moduleName, method);
+
+            // Assert
+            _ = await result.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetEdgeDeviceLogsMustReturnLogsWhen200IsReturned()
+        {
+            // Arrange
+            var deviceId = Guid.NewGuid().ToString();
+
+            var edgeModule = new IoTEdgeModule
+            {
+                ModuleName = Guid.NewGuid().ToString()
+            };
+
+            var method = new CloudToDeviceMethod(CloudToDeviceMethods.GetModuleLogs);
+
+            var payload = JsonConvert.SerializeObject(new
+            {
+                schemaVersion = "1.0",
+                items = new[]
+                {
+                    new
+                    {
+                        id = edgeModule.ModuleName,
+                        filter = new
+                        {
+                            tail = 300
+                        }
+                    }
+                },
+                encoding = "none",
+                contentType = "json"
+            });
+
+            _ = method.SetPayloadJson(payload);
+
+
+            var logger = Mock.Of<ILogger<ExternalDeviceService>>();
+
+            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
+                It.Is<string>(x => x == deviceId),
+                It.Is<string>(x => x == "$edgeAgent"),
+                It.Is<CloudToDeviceMethod>(x => x.MethodName == method.MethodName && x.GetPayloadAsJson() == payload),
+                It.IsAny<CancellationToken>()))
+                .ReturnsAsync(new CloudToDeviceMethodResult
+                {
+                    Status = 200
+                });
+
+            var deviceService = new ExternalDeviceService(
+                logger,
+                this.mockRegistryManager.Object,
+                this.mockServiceClient.Object,
+                this.mockDeviceModelRepository.Object,
+                this.mockRegistryProvider.Object);
+
+            // Act
+            var result = await deviceService.GetEdgeDeviceLogs(deviceId, edgeModule);
+
+            // Assert
+            _ = result.Should().NotBeNull();
+            _ = result.Count().Should().Be(0);
+        }
+
+        [Test]
+        public async Task GetEdgeDeviceLogsMustReturnEmptyLogsWhenNot200IsReturned()
+        {
+            // Arrange
+            var deviceId = Guid.NewGuid().ToString();
+
+            var edgeModule = new IoTEdgeModule
+            {
+                ModuleName = Guid.NewGuid().ToString()
+            };
+
+            var method = new CloudToDeviceMethod(CloudToDeviceMethods.GetModuleLogs);
+
+            var payload = JsonConvert.SerializeObject(new
+            {
+                schemaVersion = "1.0",
+                items = new[]
+                {
+                    new
+                    {
+                        id = edgeModule.ModuleName,
+                        filter = new
+                        {
+                            tail = 300
+                        }
+                    }
+                },
+                encoding = "none",
+                contentType = "json"
+            });
+
+            _ = method.SetPayloadJson(payload);
+
+
+            var logger = Mock.Of<ILogger<ExternalDeviceService>>();
+
+            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
+                It.Is<string>(x => x == deviceId),
+                It.Is<string>(x => x == "$edgeAgent"),
+                It.Is<CloudToDeviceMethod>(x => x.MethodName == method.MethodName && x.GetPayloadAsJson() == payload),
+                It.IsAny<CancellationToken>()))
+                .ReturnsAsync(new CloudToDeviceMethodResult
+                {
+                    Status = 500
+                });
+
+            var deviceService = new ExternalDeviceService(
+                logger,
+                this.mockRegistryManager.Object,
+                this.mockServiceClient.Object,
+                this.mockDeviceModelRepository.Object,
+                this.mockRegistryProvider.Object);
+
+            // Act
+            var result = await deviceService.GetEdgeDeviceLogs(deviceId, edgeModule);
+
+            // Assert
+            _ = result.Should().NotBeNull();
+            _ = result.Count().Should().Be(0);
+        }
+
+        [Test]
+        public async Task GetEdgeDeviceLogsShouldInternalServerErrorExceptionWhenIssueOccurs()
+        {
+            // Arrange
+            var deviceId = Guid.NewGuid().ToString();
+
+            var edgeModule = new IoTEdgeModule
+            {
+                ModuleName = Guid.NewGuid().ToString()
+            };
+
+            var method = new CloudToDeviceMethod(CloudToDeviceMethods.GetModuleLogs);
+
+            var payload = JsonConvert.SerializeObject(new
+            {
+                schemaVersion = "1.0",
+                items = new[]
+                {
+                    new
+                    {
+                        id = edgeModule.ModuleName,
+                        filter = new
+                        {
+                            tail = 300
+                        }
+                    }
+                },
+                encoding = "none",
+                contentType = "json"
+            });
+
+            _ = method.SetPayloadJson(payload);
+
+            _ = this.mockServiceClient.Setup(c => c.InvokeDeviceMethodAsync(
+                    It.Is<string>(x => x == deviceId),
+                    It.Is<string>(x => x == "$edgeAgent"),
+                    It.Is<CloudToDeviceMethod>(x => x.MethodName == method.MethodName && x.GetPayloadAsJson() == payload),
+                    It.IsAny<CancellationToken>()))
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            var deviceService = CreateService();
+
+            // Act
+            var act = () => deviceService.GetEdgeDeviceLogs(deviceId, edgeModule);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetDevicesCountShouldReturnDevicesCount()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 1}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'LoRa Concentrator')")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetDevicesCount();
+
+            // Assert
+            _ = result.Should().Be(1);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetDevicesCountShouldInternalServerErrorExceptionWhenIssueOccursOnGettingDevicesCount()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'LoRa Concentrator')")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var act = () => service.GetDevicesCount();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetConnectedDevicesCountCountShouldReturnConnectedDevicesCount()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 1}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND connectionState = 'Connected' AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'LoRa Concentrator')")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetConnectedDevicesCount();
+
+            // Assert
+            _ = result.Should().Be(1);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetConnectedDevicesCountShouldInternalServerErrorExceptionWhenIssueOccursOnGettingConnectedDevicesCount()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND connectionState = 'Connected' AND (NOT is_defined(tags.deviceType) OR devices.tags.deviceType != 'LoRa Concentrator')")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var act = () => service.GetConnectedDevicesCount();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetEdgeDevicesCountCountShouldReturnEdgeDevicesCount()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 1}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetEdgeDevicesCount();
+
+            // Assert
+            _ = result.Should().Be(1);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetEdgeDevicesCountShouldInternalServerErrorExceptionWhenIssueOccursOnGettingEdgeDevicesCount()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var act = () => service.GetEdgeDevicesCount();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetConnectedEdgeDevicesCountCountShouldReturnConnectedEdgeDevicesCount()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 1}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true AND connectionState = 'Connected'")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetConnectedEdgeDevicesCount();
+
+            // Assert
+            _ = result.Should().Be(1);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetConnectedEdgeDevicesCountShouldInternalServerErrorExceptionWhenIssueOccursOnGettingConnectedEdgeDevicesCount()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = true AND connectionState = 'Connected'")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var act = () => service.GetConnectedEdgeDevicesCount();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetConcentratorsCountShouldReturnConcentratorsCount()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new[]
+                {
+                    /*lang=json*/
+                    "{ totalNumber: 1}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND devices.tags.deviceType = 'LoRa Concentrator'")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var result = await service.GetConcentratorsCount();
+
+            // Assert
+            _ = result.Should().Be(1);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetConcentratorsCountShouldInternalServerErrorExceptionWhenIssueOccursOnGettingConcentratorsCount()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockCountQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockCountQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                    It.Is<string>(x => x == "SELECT COUNT() as totalNumber FROM devices WHERE devices.capabilities.iotEdge = false AND devices.tags.deviceType = 'LoRa Concentrator'")))
+                .Returns(mockCountQuery.Object);
+
+            // Act
+            var act = () => service.GetConcentratorsCount();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetEnrollmentCredentialsShouldReturnEnrollmentCredentials()
+        {
+            // Arrange
+
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+            var mockTwin = new Twin(deviceId);
+            mockTwin.Tags["modelId"] = "bbb";
+
+            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == deviceId)))
+                .ReturnsAsync(mockTwin);
+
+            var mockRegistrationCredentials = new DeviceCredentials
+            {
+                AuthenticationMode = AuthenticationMode.SymmetricKey,
+                SymmetricCredentials = new SymmetricCredentials
+                {
+                    RegistrationID = "aaa",
+                    SymmetricKey = "dfhjkfdgh"
+                }
+            };
+
+            _ = this.mockDeviceModelRepository.Setup(c => c.GetByIdAsync("bbb"))
+                .ReturnsAsync(new Portal.Domain.Entities.DeviceModel
+                {
+                    Id = "bbb",
+                    Name = "ccc"
+                });
+
+            _ = this.mockRegistryProvider.Setup(c => c.GetEnrollmentCredentialsAsync(deviceId, "ccc"))
+                .ReturnsAsync(mockRegistrationCredentials);
+
+            // Act
+            var enrollmentCredentials = await service.GetDeviceCredentials(deviceId);
+
+            // Assert
+            _ = enrollmentCredentials.Should().BeEquivalentTo(mockRegistrationCredentials);
+
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenDeviceTypePropertyNotExistGetEnrollmentCredentialsShouldThrowResourceNotFoundException()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+            var mockTwin = new Twin(deviceId);
+
+
+            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == deviceId)))
+                .ReturnsAsync(mockTwin);
+
+            // Act
+            var act = () => service.GetDeviceCredentials(deviceId);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<ResourceNotFoundException>();
+
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenDeviceNotExistGetEnrollmentCredentialsShouldThrowResourceNotFoundException()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+
+            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == deviceId)))
+                .ReturnsAsync((Twin)null);
+
+            // Act
+            var act = () => service.GetDeviceCredentials(deviceId);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<ResourceNotFoundException>();
+
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task WhenUnableToGetModelGetEnrollmentCredentialsShouldThrowInternalServerErrorException()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+            var mockTwin = new Twin(deviceId);
+            mockTwin.Tags["modelId"] = "bbb";
+
+            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == deviceId)))
+                .ReturnsAsync(mockTwin);
+
+            _ = this.mockDeviceModelRepository.Setup(c => c.GetByIdAsync("bbb"))
+                .ReturnsAsync(new Portal.Domain.Entities.DeviceModel
+                {
+                    Id = "bbb",
+                    Name = "ccc"
+                });
+
+            _ = this.mockRegistryProvider.Setup(c => c.GetEnrollmentCredentialsAsync(deviceId, "ccc"))
+                .Throws(new RequestFailedException("test"));
+
+            // Act
+            var act = () => service.GetDeviceCredentials(deviceId);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task CreateNewTwinFromDeviceIdShouldReturnTwin()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+            _ = this.mockRegistryManager.Setup(c => c.GetDeviceAsync(It.IsAny<string>()))
+                .ReturnsAsync((Device)null);
+
+            // Act
+            var twin = await service.CreateNewTwinFromDeviceId(deviceId);
+
+            // Assert
+            Assert.AreEqual(deviceId, twin.DeviceId);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task CreateNewTwinFromDeviceIdShouldThrowInternalErrorExceptionWhenDeviceAlreadyExists()
+        {
+            // Arrange
+            var service = CreateService();
+            var deviceId = Guid.NewGuid().ToString();
+            _ = this.mockRegistryManager.Setup(c => c.GetDeviceAsync(It.IsAny<string>()))
+                .ReturnsAsync(new Device());
+
+            // Act
+            var act = () => service.CreateNewTwinFromDeviceId(deviceId);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<DeviceAlreadyExistsException>();
+
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetEdgeDeviceCredentialsShouldReturnEnrollmentCredentials()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var fakeDevice = Fixture.Create<IoTEdgeDevice>();
+
+            var mockRegistrationCredentials = Fixture.Create<DeviceCredentials>();
+
+            var mockTwin = new Twin(fakeDevice.DeviceId);
+
+            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == mockTwin.DeviceId)))
+                .ReturnsAsync(mockTwin);
+
+            _ = this.mockRegistryProvider.Setup(c => c.GetEnrollmentCredentialsAsync(fakeDevice.DeviceId, It.IsAny<string>()))
+                .ReturnsAsync(mockRegistrationCredentials);
+
+            // Act
+            var result = await service.GetEdgeDeviceCredentials(fakeDevice);
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.AreEqual(mockRegistrationCredentials, result);
+
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public void WhenDeviceTwinIsNullGetEdgeDeviceCredentialsShouldThrowResourceNotFoundException()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var fakeDevice = Fixture.Create<IoTEdgeDevice>();
+
+            _ = this.mockRegistryManager.Setup(c => c.GetTwinAsync(It.Is<string>(x => x == fakeDevice.DeviceId)))
+                .ReturnsAsync(value: null);
+
+            // Act
+
+            // Assert
+            _ = Assert.ThrowsAsync<ResourceNotFoundException>(() => service.GetEdgeDeviceCredentials(fakeDevice));
+
+            this.mockRepository.VerifyAll();
+        }
+
+
+        [Test]
+        public async Task GetAllGatewayIDExpectedBehaviorShouldReturnList()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new[]
+                {
+                    /*lang=json*/
+                    "{ deviceId: 'value1'}",
+                    /*lang=json*/
+                    "{ deviceId: 'value2'}",
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT DeviceID FROM devices.modules WHERE devices.modules.moduleId = 'LoRaWanNetworkSrvModule'")))
+                .Returns(mockQuery.Object);
+
+            // Act
+            var result = await service.GetAllGatewayID();
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.IsAssignableFrom<List<string>>(result);
+            Assert.AreEqual(2, result.Count);
+            Assert.AreEqual("value1", result[0]);
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetAllGatewayIDIssueOccuringShouldThrowInternalServerErrorException()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT DeviceID FROM devices.modules WHERE devices.modules.moduleId = 'LoRaWanNetworkSrvModule'")))
+                .Returns(mockQuery.Object);
+
+            // Act
+            var act = () => service.GetAllGatewayID();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetDevicesToExportExpectedBehaviorShouldReturnList()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ReturnsAsync(new List<string>
+                {
+                    /*lang=json*/
+                    "{ \"deviceId\": \"000001\", \"tags\": { \"deviceName\": \"DeviceExport01\", \"supportLoRaFeatures\": \"true\", \"modelId\": \"01a440ca-9a67-4334-84a8-0f39995612a4\", \"Tag1\": \"Tag1-1\"}, \"desired\": { \"Property1\": \"123\", \"Property2\": \"456\" }}",
+                    /*lang=json*/
+                    "{ \"deviceId\": \"000002\", \"tags\": { \"deviceName\": \"DeviceExport02\", \"supportLoRaFeatures\": \"true\", \"modelId\": \"01a440ca-9a67-4334-84a8-0f39995612a4\", \"Tag1\": \"Tag1-2\"}, \"desired\": { \"Property1\": \"789\", \"Property2\": \"000\" }}"
+                });
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT deviceId, tags, properties.desired FROM devices WHERE (NOT IS_DEFINED (tags.deviceType) OR tags.deviceType <> 'LoRa Concentrator') AND (capabilities.iotEdge = false)")))
+                .Returns(mockQuery.Object);
+
+            // Act
+            var result = await service.GetDevicesToExport();
+
+            // Assert
+            Assert.IsNotNull(result);
+            Assert.IsAssignableFrom<List<string>>(result);
+            Assert.AreEqual(2, result.Count());
+            var deviceObjectResult = JsonNode.Parse(result.First())!;
+            Assert.AreEqual("000001", deviceObjectResult["deviceId"].ToString());
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task GetDevicesToExportIssueOccuringShouldThrowInternalServerErrorException()
+        {
+            // Arrange
+            var service = CreateService();
+
+            var mockQuery = this.mockRepository.Create<IQuery>();
+
+            _ = mockQuery.Setup(c => c.GetNextAsJsonAsync())
+                .ThrowsAsync(new RequestFailedException("test"));
+
+            _ = this.mockRegistryManager.Setup(c => c.CreateQuery(
+                It.Is<string>(x => x == $"SELECT deviceId, tags, properties.desired FROM devices WHERE (NOT IS_DEFINED (tags.deviceType) OR tags.deviceType <> 'LoRa Concentrator') AND (capabilities.iotEdge = false)")))
+                .Returns(mockQuery.Object);
+
+            // Act
+            var act = () => service.GetDevicesToExport();
+
+            // Assert
+            _ = await act.Should().ThrowAsync<InternalServerErrorException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task RetrieveLastConfigurationTwinHasNoConfigurationShouldReturnNull()
+        {
+            // Arrange
+            var service = CreateService();
+            var mockTwin = new Twin("aaa");
+
+            // Act
+            var result = await service.RetrieveLastConfiguration(mockTwin);
+
+            // Assert
+            Assert.IsNull(result);
+        }
+
+        [Test]
+        public async Task CreateDeviceModel_AnyExternalDeviceModelDto_NotImplementedExceptionIsThrown()
+        {
+            // Arrange
             var externalDeviceModelDto = new ExternalDeviceModelDto();
-            var service = CreateService();
-
-            // Act
-            var act = () => service.CreateDeviceModel(externalDeviceModelDto);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<NotImplementedException>();
-            this.mockRepository.VerifyAll();
-        }
-
-        [Test]
-        public async Task DeleteDeviceModel_AnyExternalDeviceModelDto_NotImplementedExceptionIsThrown()
-        {
-            // Arrange
+            var service = CreateService();
+
+            // Act
+            var act = () => service.CreateDeviceModel(externalDeviceModelDto);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+            this.mockRepository.VerifyAll();
+        }
+
+        [Test]
+        public async Task DeleteDeviceModel_AnyExternalDeviceModelDto_NotImplementedExceptionIsThrown()
+        {
+            // Arrange
             var externalDeviceModelDto = new ExternalDeviceModelDto();
-            var service = CreateService();
-
-            // Act
-            var act = () => service.DeleteDeviceModel(externalDeviceModelDto);
-
-            // Assert
-            _ = await act.Should().ThrowAsync<NotImplementedException>();
-            this.mockRepository.VerifyAll();
-        }
-    }
-}
+            var service = CreateService();
+
+            // Act
+            var act = () => service.DeleteDeviceModel(externalDeviceModelDto);
+
+            // Assert
+            _ = await act.Should().ThrowAsync<NotImplementedException>();
+            this.mockRepository.VerifyAll();
+        }
+    }
+}
diff --git a/templates/aws/awsdeploy.yml b/templates/aws/awsdeploy.yml
index 5ce8266ca..c0fec1bdc 100644
--- a/templates/aws/awsdeploy.yml
+++ b/templates/aws/awsdeploy.yml
@@ -688,3 +688,64 @@ Resources:
                   - ecr:BatchGetImage
                   - ecr:GetDownloadUrlForLayer
                 Resource: "*"
+
+  GreengrassV2TokenExchangeRole:
+    Type: AWS::IAM::Role
+    Properties:
+      RoleName: GreengrassV2TokenExchangeRole
+      AssumeRolePolicyDocument:
+        Version: "2012-10-17"
+        Statement:
+          - Effect: Allow
+            Principal:
+              Service: credentials.iot.amazonaws.com
+            Action: sts:AssumeRole
+      Policies:
+        - PolicyName: GreengrassV2TokenExchangeRoleAccess
+          PolicyDocument:
+            Version: "2012-10-17"
+            Statement:
+            - Effect: Allow
+              Resource: "*"
+              Action: 
+                - "logs:CreateLogGroup"
+                - "logs:CreateLogStream"
+                - "logs:PutLogEvents"
+                - "logs:DescribeLogStreams"
+                - "s3:GetBucketLocation"
+
+  GreengrassCoreTokenExchangeRoleAlias:
+    Type: AWS::IoT::RoleAlias
+    Properties: 
+      RoleAlias: GreengrassCoreTokenExchangeRoleAlias
+      RoleArn: 
+        Fn::GetAtt: GreengrassV2TokenExchangeRole.Arn
+
+  GreengrassCoreTokenExchangeRoleAliasPolicy: 
+    Type: AWS::IoT::Policy
+    Properties:
+      PolicyName: GreengrassCoreTokenExchangeRoleAliasPolicy
+      PolicyDocument:
+        Version: '2012-10-17'
+        Statement:
+        - Effect: Allow
+          Action:
+          - iot:AssumeRoleWithCertificate
+          Resource:
+          - Fn::GetAtt: GreengrassCoreTokenExchangeRoleAlias.RoleAliasArn
+
+  GreengrassV2IoTThingPolicy: 
+    Type: AWS::IoT::Policy
+    Properties:
+      PolicyName: GreengrassV2IoTThingPolicy 
+      PolicyDocument:
+        Version: '2012-10-17'
+        Statement:
+        - Effect: Allow
+          Action:
+          - iot:Publish
+          - iot:Subscribe
+          - iot:Receive
+          - iot:Connect
+          - greengrass:*
+          Resource: "*"
\ No newline at end of file