ACM

Introduction

  • AWS Certification Manager (ACM) is a regional service to host public or private SSL Certificates in AWS.

  • A regional service. It needs multiple certificates for each region except with CloudFront.

Feature

  • To host SSL Certificates:

    • Buy your own and upload / renew them with CLI

    • Let ACM to provision and renew public SSL Certificates for you.

  • ACM integrations:

    • Load Balancers (including the ones created by Elastic Beanstalk)

      • For the same site (the same fully qualified domain name, or FQDN, or set of FQDNs) in a different Region, needs a new certificate for each Region.

    • CloudFront

      • Must request the certificate only in the US East (N. Virginia) region. ACM certificates in this region that are associated with a CloudFront distribution are distributed to all the geographic locations.

    • API Gateways

    • PS. Not for EC2 directly

  • Cost

    • Public certificates

      • free

    • Private certificates

      • pay a monthly fee for the operation of each private CA until you delete it and

      • pay for the private certificates you issue each month

PreviousNetworkingNextCloudFront

Last updated