By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Can you validate an ACM public certificate using a domain record in a Route 53 private hosted zone?

0

I'm trying to create an ACM public certificate and then validate it using a domain record in a Route 53 private hosted zone, but the setup isn't working. I don't see an option to specify the private hosted zone ID in the validation request. Is it possible to validate an ACM public certificate using a domain record in a Route 53 private hosted zone?

Topics
Networking & Content DeliverySecurity, Identity, & Compliance
Tags
Amazon Route 53AWS Certificate Manager
Language
English
AWS-User-2983741
asked 7 years ago10.5K views
1 Answer
1
Accepted Answer

It's not possible to validate an ACM public certificate using a domain record in a Route 53 private hosted zone.

When you request an ACM public certificate using DNS validation, ACM provides a CNAME record that you must add to your DNS configuration to validate your ownership of the domain. Because anyone can create a private DNS zone and put records on it under any domain name, being able to make a change in a private DNS zone doesn't prove public ownership of the domain.

For more information on DNS validation, see DNS validation in the ACM user guide.

AWS
EXPERT
gavinmc
answered 7 years ago
profile picture
EXPERT
Adeleke Adebowale Julius
reviewed 10 months ago
profile picture
EXPERT
Oleksii Bebych
reviewed a year ago
profile picture
EXPERT
Sedat Salman
reviewed 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content