Complete a 3 Question Survey and Earn a re:Post Badge

Help improve AWS Support Official channel in re:Post and share your experience - complete a quick three-question survey to earn a re:Post badge!

Custom domain error

Hi, Below error message we are getting it on API gateway>Custom Domain Name >Mutual Authentication>while using sectigo certificate. AWS console page is not saving due to below error:

Invaild OwnershipVerficationCertificate. OwnershipVerificsationCertificate should be public ACM Certificate

Regards Harry

Topics

Security, Identity, & Compliance

Tags

AWS Certificate Manager

Language

English

Jo-Harrison

asked 2 years ago333 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

Accepted Answer

You need to include the certificate chain in the original certificate. So not only the certificate itself but also the "chain" or the certificate.

Read further details here: https://docs.aws.amazon.com/apigateway/latest/developerguide/http-api-mutual-tls.html

Lockhead

answered 2 years ago

Relevant content

Error "*The certificate subject api-test.dsis-mcp.com conflicts with an existing certificate from a different issuer*" when configuring the Custom Domain Name with mTLS
JJMierwa
asked 3 months ago
Unable to configure mutual TLS configuration of Custom domain names configuration of API Gateway.
Pankesh Patel
asked a year ago
API Gateway > Custom Domain Name > TooManyRequestsException
ryan-6550767
asked 3 years ago
ClientVPN Mutual Auth Server Cert missing domain name thus fails to work with ClientVPNEndpoint
Accepted Answer
BeachPilot
asked a year ago
How can I troubleshoot certificate chain and self-signed certificate issues for Amazon API Gateway with custom domains and mutual TLS enabled?
AWS OFFICIALUpdated 6 months ago
How do I troubleshoot HTTP 403 Forbidden errors from an API Gateway custom domain name that requires mutual TLS?
AWS OFFICIALUpdated 2 years ago
How can I resolve certificate expired or "invalid certificate" errors when invoking an API Gateway API using a custom domain name?
AWS OFFICIALUpdated 6 months ago
How do I resolve certificate subject conflicts with mutual TLS in API Gateway?
AWS OFFICIALUpdated 2 years ago
Troubleshoot null_pointer_exception during remote reindexing in OpenSearch VPC domains
EXPERT
Cathy W
published a year ago
Integrating an Amazon Connect Customer Profiles Domain with Amazon Connect by API
EXPERT
taylauna
published a year ago