Mutual TLS for AWS Lambda Function URL
0
Is there a way to enable mutual TLS for AWS Lambda function URLs? I would like to do the following
- enforce client side TLS cert/key
- enforce that the client cert is generated from a particular CA (i.e. root CA)
- (optionally) enforce a check on the CN string of the cert (to allow on certain clients to come in)
1st and 2nd is already supported in AWS ApiGateway.
Topics
Tags
asked a month ago5 views
1 Answers
0
Lambda function URLs are intended to be very lightweight way if invoking Lambda functions. They have limited capabilities, mutual TLS is not one of them.
If you need mutual TLS you should use API Gateway instead.
Relevant questions
Supporting mutual TLS on specific resource paths
asked 3 months agoCloudHSMv2 Force "TLS client-server mutual authentication" or disable default key on HSM
asked 5 months agoClient VPN connection issues - TLS Handshake issue
asked 3 years agoAWS Client VPN - Notification of new client connection to another AWS service (e.g. Lambda)?
Accepted Answerasked 10 days agois it possible that SQS Triggers to a Lambda Function Alias?
Accepted Answerasked 3 months agoLambda response compression to API Gateway and client
asked 3 months agoAWS API Gateway private integration with mutual TLS
asked 6 months agoMutual TLS for AWS Lambda Function URL
asked a month agoMutual TLS with Commercial Client Certificates
asked 2 months agoQ: What’s the difference between “an ALB configured with pass-through traffic without TLS offload” vs “a NLB configured to pass-through traffic without TLS offload” ?
Accepted Answerasked 2 months ago