AWS acm documentation change
Summary
Added note about persistent domain validations for ACME automation
Security assessment
Clarifies domain validation methodology for ACME certificates, which is a security control. No vulnerability addressed.
Diff
diff --git a/acm/latest/userguide/domain-ownership-validation.md b/acm/latest/userguide/domain-ownership-validation.md index e70b694ae..69d4a9b1c 100644 --- a//acm/latest/userguide/domain-ownership-validation.md +++ b//acm/latest/userguide/domain-ownership-validation.md @@ -14,0 +15,4 @@ Validation applies only to publicly trusted certificates issued by ACM. ACM does +###### Note + +If you use ACME certificate automation, domain validation is handled differently. ACME domain validations are persistent resources configured by PKI administrators that pre-authorize domains for certificate issuance. ACME clients do not perform live validation challenges. For more information, see [ACME domain validation](./acm-acme-domain-validation.html). +