- Newest
- Most votes
- Most comments
The CA Certificates required to work with s3 are covered in the FAQ in following blog post[1] which goes over the s3/CloudFront migration to Amazon Trust Services. See the question "What do I need to do?" which mentions that you need to "update your client certificate trust store to include all of Amazon Trust Services’ root certificates".
So to answer your question, you will need to trust all of the root CA certificates that are available on the Amazon Trust Services Repository[2].
[1] Reminder: Amazon S3 and Amazon CloudFront service certificates migrating to Amazon Trust Services starting March 23, 2021 - https://aws.amazon.com/blogs/storage/reminder-amazon-s3-and-amazon-cloudfront-migrating-service-certificates-to-amazon-trust-services-starting-march-23-2021/
[2] Amazon Trust Services Repository - https://www.amazontrust.com/repository/
Relevant content
- asked 7 months ago
- asked a month ago
- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 19 days ago
- Can I use ACM to issue private certificates when the AWS Private CA validity is less than 13 months?AWS OFFICIALUpdated 5 months ago