Back on Sept. 21, I got an "Action required - Your certificate renewal" email from AWS about a domain that was using email validation (or two domains, the bare mydomain.com and the www.mydomain.com). The DNS is not on R53 - it's managed at godaddy. I decided to start doing DNS validation, so I went to godaddy and entered the necessary CNAME records. Both the bare URL and the www received a "success" validation status in ACM.
Today, I got a similar "Action required" email from AWS about the same domain(s). Going to https://console.aws.amazon.com/acm/home, I see two entries for the same domain(s). One is the recently issued one (9-23-2021) and the other was issued in 2019. For the older one, the www is still "Pending validation" But the more recent one shows an "In use?" status of "No" while the older one shows an "In use?" status of "Yes"
Do I need to start using the validated cert? If so, not sure how to do that.
Or do I need to make changes to the old cert, which is currently being used? If so, guidance on that would be appreciated.
recently issued
validation status: success for bare and www
In use? No
Renewal eligibility: Ineligible
issued in 2019
validation status: success for bare, "Pending validation" for www
In use? Yes
Renewal eligibility: Eligible
Edited by: mikeh100 on Oct 9, 2021 10:22 AM
Figured it out. I am using the certificate through Cloudfront, so the procedure is to go into Cloudfront and edit the Settings. That's where you can tell Cloudfront which certificate to use.
AWS 官方已更新 1 年前