AWS acm documentation change
Summary
Updated guidance to include ACME protocol for certificate automation on stand-alone servers and customer-managed infrastructure
Security assessment
Promotes secure certificate automation using ACME protocol but doesn't address a specific vulnerability. Enhances documentation of security features.
Diff
diff --git a/acm/latest/userguide/acm-overview.md b/acm/latest/userguide/acm-overview.md index 26d2e3d85..de98f2ec9 100644 --- a//acm/latest/userguide/acm-overview.md +++ b//acm/latest/userguide/acm-overview.md @@ -15 +15 @@ AWS Certificate Manager (ACM) handles the complexity of creating, storing, and r -ACM is not intended for use with a stand-alone web server. If you want to set up a stand-alone secure server on an Amazon EC2 instance, the following tutorial has instructions: [Configure SSL/TLS on Amazon Linux 2023](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/SSL-on-amazon-linux-2023.html). +You can use ACM certificates with stand-alone web servers and other customer-managed infrastructure, including Amazon EC2 instances. For publicly trusted web certificates on these servers, use the ACME protocol to automate issuance and renewal directly on your hosts. See [ACME certificate automation](./acm-acme.html). For private PKI scenarios, the following tutorial has instructions for setting up a secure server on an Amazon EC2 instance: [Configure SSL/TLS on Amazon Linux 2023](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/SSL-on-amazon-linux-2023.html). @@ -25 +25 @@ ACM is not intended for use with a stand-alone web server. If you want to set up - * [What is the right AWS certificate service for my needs?](./service-options.html) + * [Choosing how to issue certificates with AWS](./service-options.html)