Can't use ACM certificate in Cloudfront China


I am in China region, created a ACM certificate in cn-north-1 region. I then tried to use this certificate to create a cloudfront. But I got error "Invalid request provided: The specified SSL certificate source isn't available in this region."

I then tried to create ACM certificate in cn-northwest-1 region, but result in the same error.

I read the doc, it says I must use us-east-1 to create certificate but that region isn't available in China.

So is it possible to use certificate manager with cloudfront in China?

3 Answers

The correct answer is, you need to use third party (e.g. redfort) to issue the certificate in China, because Cloudfront distribution does not support ACM certificate in China regions.

answered 2 years ago
Accepted Answer

This is answered in public documentation for AWS China in

Amazon CloudFront in the China Regions currently does not support Amazon Certificate Manager. You must get an SSL/TLS certificate from a different third-party certificate authority (CA) and then upload it to the IAM certificate store. For more information, see Importing an SSL/TLS Certificate in the Amazon CloudFront Developer Guide.

answered 2 years ago


If you need to use the Cloudfront , You must create ACM in us-east-1 region then you can use it Cloudfront, Please check the link for the regions

AWS Premium support:

How do I configure my CloudFront distribution to use an SSL/TLS certificate?

Thank You GK

profile picture
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions