Back to All Checks
Medium ACM Regional

Imported and ACM-issued certificates should be renewed after a specified time period

NISTISO 27001

Description

This control checks whether ACM certificates in your account are marked for expiration within 30 days. It checks both imported certificates and certificates provided by AWS Certificate Manager.

Remediation

To renew ACM certificates, follow the guidelines provided by AWS Certificate Manager for domains validated by email or DNS.

Steps

  1. Check the expiration date of your certificates.
  2. For domains validated by email, respond to the email notifications to renew the certificates.
  3. For domains validated by DNS, ensure that DNS validation records are in place for automatic renewal.

Compliance

NISTISO 27001
Start Your Free Security Check