Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

migrate the existing AWS PCA Root and Intermediate CA to another account

0

Can we migrate the existing AWS PCA Root and Intermediate CA to another account, without impacting the issued certs in ACM

Topics
Security, Identity, & Compliance
Tags
AWS Private Certificate AuthorityAWS Certificate Manager
Language
English
asked 2 years ago607 views
2 Answers
0

I thought that just as public ACM certificates cannot be transferred to another account, private CAs cannot be transferred.
https://repost.aws/knowledge-center/acm-export-certificate

So how about sharing with another account instead of migrating?
https://repost.aws/knowledge-center/acm-share-pca-with-another-account

EXPERT
answered 2 years ago
EXPERT
reviewed 2 years ago
0

You could share the PCA, but this terraform aws provider bug breaks issuing certificates with shared PCAs: https://github.com/hashicorp/terraform-provider-aws/issues/26868. There is a PR with a proposed fix: https://github.com/hashicorp/terraform-provider-aws/pull/39952

answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content