A config rule that checks whether ACM Certificates in your account are marked for expiration within the specified number of days. Certificates provided by ACM are automatically renewed. ACM does not automatically renew certificates that you import.

 
Tags
SSL
ACM
Items
1
Size
0.8 KB
AWSTemplateFormatVersion: '2010-09-09'
Resources:
  ConfigRule:
    Type: 'AWS::Config::ConfigRule'
    Properties:
      ConfigRuleName: acm-certificate-expiration-check
      Description: >-
        A config rule that checks whether ACM Certificates in your account are
        marked for expiration within the specified number of days. Certificates
        provided by ACM are automatically renewed. ACM does not automatically
        renew certificates that you import.
      InputParameters:
        daysToExpiration: '14'
      Scope:
        ComplianceResourceTypes:
          - 'AWS::ACM::Certificate'
      Source:
        Owner: AWS
        SourceIdentifier: ACM_CERTIFICATE_EXPIRATION_CHECK
      MaximumExecutionFrequency: TwentyFour_Hours
Parameters: {}
Metadata: {}
Conditions: {}

Customize Cf Template

Rule Parameters

 
* Required field