AWS Config Rule: ACM Certificate Expiration Check

ACM_CERTIFICATE_EXPIRATION_CHECK

Fernando Honig

Last Update 8 months ago

Description: Checks if AWS Certificate Manager Certificates in your account are marked for expiration within the specified number of days. Certificates provided by ACM are automatically renewed. ACM does not automatically renew certificates that you import.


Trigger type: Configuration changes


AWS Region: All supported AWS regions except China (Beijing), China (Ningxia), Asia Pacific (Osaka), Europe (Milan) Region


How to Resolve Manually

Specified number of days by default in this rule: 30 days


To resolve this manually, check the expiration date of your imported certificate. Go to your AWS Management Console and select Certificate Manager (AWS Certificate Manager) and identify the NON_COMPLIANT one.


Import a new Certificate with a further expiration date or provision a new one using ACM.


Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here

Was this article helpful?

1 out of 1 liked this article

Still need help? Message Us