AWS Certificate Manager (ACM) must not contain invalid, failed or revoked certificates

Tenacity Id

Risk Level

Categories

acm-004

Last Updated:

April 21, 2022

Checks the ACM for Invalid or Failed certificates. An Invalid certificate is one that has not been validated within 72 hours. A certificate fails for these reasons:- the certificate is requested for invalid public domains- the certificate is requested for domains which are not allowed or missing contact information- typographical errorsThese certificates cannot be used, and you will have to request new ones. It is recommended to delete Failed or Invalid certificates.