What is Amazon Certificate Manager? - Amazon Certificate Manager
Supported RegionsPricing
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

What is Amazon Certificate Manager?

Amazon Certificate Manager (ACM) handles the complexity of creating, storing, and renewing public and private SSL/TLS X.509 certificates and keys that protect your Amazon websites and applications. You can provide certificates for your integrated Amazon services either by issuing them directly with ACM or by importing third-party certificates into the ACM management system. ACM certificates can secure singular domain names, multiple specific domain names, wildcard domains, or combinations of these. ACM wildcard certificates can protect an unlimited number of subdomains. You can also export ACM certificates signed by Amazon Private CA for use anywhere in your internal PKI.

Note

ACM is not intended for use with a stand-alone webserver. If you want to set up a stand-alone secure server on an Amazon EC2 instance, the following tutorial has instructions: Configure SSL/TLS on Amazon Linux 2023.

Topics

Supported Regions

Visit Amazon Regions and Endpoints in the Amazon Web Services General Reference or the Amazon Region Table to see the regional availability for ACM.

Certificates in ACM are regional resources. To use a certificate with Elastic Load Balancing for the same fully qualified domain name (FQDN) or set of FQDNs in more than one Amazon region, you must request or import a certificate for each region. For certificates provided by ACM, this means you must revalidate each domain name in the certificate for each region. You cannot copy a certificate between regions.

To use an ACM certificate with Amazon CloudFront, you must request or import the certificate in the US East (N. Virginia) region. ACM certificates in this region that are associated with a CloudFront distribution are distributed to all the geographic locations configured for that distribution.

Pricing for Amazon Certificate Manager

You are not subject to an additional charge for SSL/TLS certificates that you manage with Amazon Certificate Manager. You pay only for the Amazon resources that you create to run your website or application. For the latest ACM pricing information, see the Amazon Certificate Manager Service Pricing page on the Amazon website.