By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

ACM costs with using subordinate CA certificate whose parent authority is externally hosted.

0

I am needing to understand the costs associated with Installing a subordinate CA certificate whose parent authority is externally hosted. Does this bypass both the $400/month (long duration certificates) and $50/month (short duration certificates) costs? If so then would we only be paying the cost for the certificates that are issued this way or does that cost go away as well? Basically I am wanting to use ACM for implementing IAM Roles Anywhere for a PKI strategy on internal endpoints. We have our own Private CAs so we don't really have a need for AWS to do it and would like to avoid the additional costs. I am also not opposed to using OpenSSL or another option.
Is there any detailed information for setting this up? It seems like all the documentation I find is for ACM PCA hosted certificates.

Topics
Security, Identity, & Compliance
Tags
AWS Certificate Manager
Language
English
dslief
asked 9 months ago278 views
1 Answer
0

Knowing how CA works you can have a offline root. I don’t believe you will get away with have a Sub CA on AWS and not paying for it.

Either way you still need something to sign/issue certificates.

These are my assumptions that you will still need to pay for the private CA. This may not answer your question fully.

profile picture
EXPERT
Gary Mclean
answered 9 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content