AWS acm documentation change
Summary
Replaced EC2 installation instructions with ACME protocol recommendations for certificate automation
Security assessment
Promotes ACME protocol for automated certificate management, which is a security best practice. No specific vulnerability addressed.
Diff
diff --git a/acm/latest/userguide/gs-acm-request-public.md b/acm/latest/userguide/gs-acm-request-public.md index e1a467eac..0e30589a6 100644 --- a//acm/latest/userguide/gs-acm-request-public.md +++ b//acm/latest/userguide/gs-acm-request-public.md @@ -26 +26 @@ Public ACM certificates follow the X.509 standard and are subject to the followi -Public ACM certificates can be installed on Amazon EC2 instances that are connected to a [Nitro Enclave](./acm-services.html#acm-nitro-enclave). You can also [export a public certificate](./export-public-certificate.html) to use on any Amazon EC2 instance. For information about setting up a standalone web server on an Amazon EC2 instance not connected to a Nitro Enclave, see [Tutorial: Install a LAMP web server on Amazon Linux 2](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-lamp-amazon-linux-2.html) or [Tutorial: Install a LAMP web server with the Amazon Linux AMI](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/install-LAMP.html). +To automate public certificate issuance and renewal outside integrated services such as on Amazon EC2 instances, use the ACME protocol. For more information, see [ACME certificate automation](./acm-acme.html). Alternatively, if you cannot use ACME, you can automate exportable certificates issued from ACM through [AWS Workload Credentials Provider](./acm-certificate-automation.html).