CloudFront Distribution Does Not Use Custom SSL Certificates

Overview

This assessment examines whether CloudFront distributions employ CloudFront's provided default SSL/TLS certificate. The assessment succeeds if a custom SSL/TLS certificate is utilized by the CloudFront distribution, but it fails if the default SSL/TLS certificate is used.

Utilizing a custom SSL/TLS certificate enables your users to access content through alternative domain names. You have the option to store these custom certificates either in AWS Certificate Manager (recommended) or in IAM.

Vendor

AWS

Cloud Service

CloudFront

CloudFront.7

Severity

Item Types

AWS::CloudFront::Distribution

Overview​

Vendor​

Cloud Service​

Related Controls​

Severity​

Item Types​

Overview

Vendor

Cloud Service

Related Controls

Severity

Item Types