acm-certificate-expiration-check - Amazon Config
Amazon CloudFormation template
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

acm-certificate-expiration-check

Checks if Amazon Certificate Manager Certificates in your account are marked for expiration within the specified number of days. Certificates provided by ACM are automatically renewed. ACM does not automatically renew certificates that you import. The rule is NON_COMPLIANT if your certificates are about to expire.

Identifier: ACM_CERTIFICATE_EXPIRATION_CHECK

Resource Types: AWS::ACM::Certificate

Trigger type: Configuration changes and Periodic

Amazon Web Services Region: All supported Amazon regions except Asia Pacific (Osaka) Region

Parameters:

daysToExpiration (Optional)
Type: int
Default: 14

Specify the number of days before the rule flags the ACM Certificate as noncompliant.

Amazon CloudFormation template

To create Amazon Config managed rules with Amazon CloudFormation templates, see Creating Amazon Config Managed Rules With Amazon CloudFormation Templates.