AWS Config Rule: CloudFront Custom SSL Certificate
CLOUDFRONT_CUSTOM_SSL_CERTIFICATE
Ryan Ware
Last Update 8 个月前
Description: Checks if the certificate associated with an Amazon CloudFront distribution is the default SSL certificate. The rule is NON_COMPLIANT if a CloudFront distribution uses the default SSL certificate.
Trigger type: Configurational Changes
AWS Region: Only available in US East (N. Virginia) Region
How to Resolve Manually
This AWS Config Rule checks if your AWS CloudFront Distribution is using a custom SSL Certificate. This is optional but you may want to enforce custom SSL Certificates within your Organization.
In order to add your own SSL Certificate, head on over to your CloudFront console within AWS. Find your CloudFront Distribution you wish to apply a custom SSL Certificate to & choose edit settings within the first "General" tab.
Here you can see a section near the top which manages the Custom SSL Certificate applied to your CloudFront Distribution. Remember that this certificate must be first uploaded to AWS Certificate Manager and must be in the US-East-1 (North Virginia) region.
Want to know more about StackZone and how to make your cloud management simple and secure?
Check our how it works section with easy to follow videos or just create your own StackZone Account here
