By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Does the TLS version upgrade to 1.2 also effect CloudFront distributions

0

Will the AWS TLS Version change also change the default TLS Version of a CloudFront distribution, which using the Default CloudFront Certificate(*.cloudfront.net) ? Currently, TLSv1 is used for this one.

Some background from the terraform docs: https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudfront_distribution#minimum_protocol_version

Topics
Networking & Content DeliveryInternet of Things (IoT)
Tags
Amazon CloudFrontTransport Layer Security (TLS)
Language
English
Daniel
asked a year ago668 views
1 Answer
0
Accepted Answer

No, it doesn't apply to CloudFront distributions. The announcement you've linked to is all about AWS API endpoints. So if you were calling EC2, SQS or even CloudFront to perform some action to modify/launch/configure something in those services then TLS 1.2 is becoming the default.

For CloudFront distributions, you get to control the ciphers for your distributions. We encourage the use of newer, more secure protocols but also appreciate that there might be some clients for your applications that don't support them.

profile pictureAWS
EXPERT
Brettski-AWS
answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content