- 最新
- 投票最多
- 评论最多
Hello.
The certificate may have expired and could not be renewed for some reason.
Once the certificate expires, automatic renewal will not be possible, so you will need to issue a new one.
https://repost.aws/knowledge-center/acm-certificate-ineligible
Therefore, please follow the steps in the document below to issue a new certificate with ACM and switch the certificate used by ALB etc. to the newly issued certificate.
https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-request-public.html
Hi,
Automatic ACM cerificate renewal happens under a few restrictions listed here: https://docs.aws.amazon.com/acm/latest/userguide/managed-renewal.html
ELIGIBLE if associated with another AWS service, such as Elastic Load Balancing or CloudFront.
ELIGIBLE if exported since being issued or last renewed.
ELIGIBLE if it is a private certificate issued by calling the ACM RequestCertificate API and then exported or associated with another AWS service.
ELIGIBLE if it is a private certificate issued through the management console and then exported or associated with another AWS service.
NOT ELIGIBLE if it is a private certificate issued by calling the AWS Private CA IssueCertificate API.
NOT ELIGIBLE if imported.
NOT ELIGIBLE if already expired.
As your current certificate expired, automatic renewal is no longer possible: see last line.
You'll have to create a new one
Please, follow instruction to create the new one and validate it in Route53: https://docs.aws.amazon.com/acm/latest/userguide/dns-validation.html
Best,
Didier
Just to be sure, if you open the expired certificate in the ACM console, does the associated resources list show any resources? AWS won't automatically renew a certificate that isn't used.
相关内容
AWS 官方已更新 3 年前- AWS 官方已更新 2 年前
- AWS 官方已更新 10 个月前
