What Is AWS Certificate Manager?

AWS Certificate Manager (ACM) handles the complexity of creating, storing, and renewing public and private SSL/TLS X.509 certificates and keys that protect your AWS websites and applications. You can provide certificates for supported AWS services either by issuing them directly with ACM or by importing third-party certificates into the ACM management system. ACM certificates can secure singular domain names, multiple specific domain names, wildcard domains, or combinations of these. ACM wildcard certificates can protect an unlimited number of subdomains. You can also export a private ACM certificate and encrypted private key to use anywhere. For more information about exporting, see Exporting a Private Certificate.

Is ACM the Right Service for Me?

AWS offers two options to customers deploying managed X.509 certificates. Choose the best one for your needs.

AWS Certificate Manager (ACM)—This service is for enterprise customers who need a secure web presence using TLS. ACM certificates are deployed through Elastic Load Balancing, Amazon CloudFront, Amazon API Gateway, and other integrated services. The most common application of this kind is a secure public website with significant traffic requirements. ACM also simplifies security management by automating the renewal of expiring certicates. You are in the right place for this service. ACM Private CA—This service is for enterprise customers building a public key infrastructure (PKI) inside the AWS cloud and intended for private use within an organization. With ACM Private CA, you can create your own certificate authority (CA) hierarchy and issue certificates with it for authenticating users, computers, applications, services, servers, and other devices. Certificates issued by a private CA cannot be used on the internet. For more information, see the ACM Private CA User Guide.

Topics

Concepts

ACM Certificate Characteristics

Supported Regions

Services Integrated with AWS Certificate Manager

Site Seals and Trust Logos

API Rate Quotas

Best Practices

Pricing for AWS Certificate Manager