AWS Certificate Manager | Details Flashcards
How will I be charged and billed for my use of ACM certificates?
Details
AWS Certificate Manager | Security, Identity & Compliance
SSL/TLS certificates provisioned, managed, and deployed through AWS Certificate Manager are free. You pay only for the AWS resources you create to run your application, such as Elastic Load Balancing load balancers or Amazon CloudFront distributions.
Can I use the same certificate with multiple Elastic Load Balancing load balancers and multiple CloudFront distributions?
Details
AWS Certificate Manager | Security, Identity & Compliance
Yes.
Can I use certificates for internal Elastic Load Balancing load balancers with no public Internet access?
Details
AWS Certificate Manager | Security, Identity & Compliance
Yes. See Managed Renewal and Deployment for details about how ACM handles renewals for certificates that are not reachable from the public Internet.
Will a certificate for www.example.com also work for example.com?
Details
AWS Certificate Manager | Security, Identity & Compliance
No. If you want your site to be referenced by both domain names (www.example.com and example.com), you must request a certificate that includes both names.
Can I import a third party certificate and use it with AWS services?
Details
AWS Certificate Manager | Security, Identity & Compliance
Yes. If you want to use a third-party certificate with Amazon CloudFront, Elastic Load Balancing, or Amazon API Gateway, you may import it into ACM using the AWS Management Console, AWS CLI, or ACM APIs. ACM does not manage the renewal process for imported certificates. You can use the AWS Management Console to monitor the expiration dates of an imported certificates and import a new third-party certificate to replace an expiring one.
What is the validity period for certificates provided by ACM?
Details
AWS Certificate Manager | Security, Identity & Compliance
Certificates provided by ACM are currently valid for 13 months.
How can ACM help my organization meet my compliance requirements?
Details
AWS Certificate Manager | Security, Identity & Compliance
Using ACM helps you comply with regulatory requirements by making it easy to facilitate secure connections, a common requirement across many compliance programs such as PCI, FedRAMP, and HIPAA. For specific information about compliance, please refer to http://aws.amazon.com/compliance.
Does ACM have a service level agreement (SLA)?
Details
AWS Certificate Manager | Security, Identity & Compliance
Not at this time.
Does ACM allow local language characters in domain names, otherwise known as Internationalized Domain Names (IDNs)?
Details
AWS Certificate Manager | Security, Identity & Compliance
ACM does not allow Unicode encoded local language characters; however, ACM allows ASCII-encoded local language characters for domain names.
Which domain name label formats does ACM allow?
Details
AWS Certificate Manager | Security, Identity & Compliance
ACM allows only UTF-8 encoded ASCII, including labels containing “xn—”, commonly known as Punycode for domain names. ACM does not accept Unicode input (u-labels) for domain names.
Does ACM provide a secure site seal or trust logo that I can display on my web site?
Details
AWS Certificate Manager | Security, Identity & Compliance
No. If you would like to use a site seal, you can obtain one from a third-party vendor. We recommend choosing a vendor that evaluates and asserts the security of your site, or your business practices, or both.
