ACM Notifications for expiring certificates


Customer wants an internal team to be notified when a certificate is approaching expiration so that they can respond and investigate the issue.

The plan is to issue public certs with auto-renewal configured so the primary goal is to get notified if that auto-renewal process is failing but a customer can accomplish that by simply getting a notification if the cert is less than 60 days from expiring, since AWS will auto-renew before the 60 day expiration timer. What are the available options to do this in AWS ?

asked 4 years ago1642 views
1 Answer
Accepted Answer

Customers can make use of the acm-certificate-expiration-check AWS Config managed rule and get notified using the AWS-PublishSNSNotification SSM automation document to publish a notification to Amazon SNS.

answered 4 years ago
profile picture
reviewed 7 days ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions