Unable to delete ACM certificate

0

Hi, I have a certificate which i was using for API gateway for custom domain mapping.

Recently i have created a new certificate and applied new certificate to all custom domains.

Before I started using new certificate, i checked how many associations are with old certidicates and i saw there were 11 associations with AWS resources and each one wre in this format

arn:aws:elasticloadbalancing:<Region>:<ID>:loadbalancer/app/prod-bom-1-cdtls-1-2-15/<SomeRandomId>

When. moved all cusom domain i noticed, association with old startd going down and with new it started increasing and finally new one fot 9 association and old one left with 2.

I waited for more then 2 hours and old certificate still have 2 assocition with some uknown resources in above format(which looks likee Api gatway rsource)

I have checked EEC2 loadbalance, OpenSearch etc as pr following article but i dont see this old certificate used any where.(I am using certificates only in APi gwateway anyways) https://aws.amazon.com/premiumsupport/knowledge-center/acm-certificate-resources/

Problem: I am unable to find where is old certificate used and so unable to remove the certificate.

Thanks Ravi

Ravi
asked 2 years ago392 views
1 Answer
1

Hello AWS Customer,

From your question I have understood that you are unable to find an ACM certificate and the associations with it. You were correct that to delete a certificate that is in use, you must first remove the certificate association. This can be done using the console or CLI for the associated service. I will link a general guide below: https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-delete.html

You were able to move nine of the eleven associations to AWS resources however, due to two still remaining on the original certificate you are still unable to delete. The below link will help you locate the certificate: https://aws.amazon.com/premiumsupport/knowledge-center/acm-certificate-resources/

Gathering details about the specific certificate might also be of use, and that can be done by following this link: https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-describe.html

I will also provide a list of possible AWS resources that can have an associated certificate's to help guide your search:

You can use public and private ACM certificates with the following AWS services:

Thank you for taking the time to reach out. Please respond for any further questions!

answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions