aws.acm

Supported Platform

• aws

Description

AWS Certificate Manager resource for assessing the configuration of AWS Certificate Manager

The aws.acm resource can be used to assess the configuration of the AWS Certificates Manager service within the account. This resource returns a list of aws.acm.certificate resources for all ACM certificates found within the account.

Fields

ID	TYPE	DESCRIPTION
certificates	[]aws.acm.certificate	list of aws.acm.certificate objects representing ACM certificates configured within the account

Examples

Return a list of aws.acm.certificate resources within the AWS account

aws.acm.certificates;

Return a list of aws.acm.certificate resources within the AWS account along with values for specified fields

aws.acm.certificates {
  arn
  notBefore
  notAfter
  createdAt
  domainName
  status
  subject
  certificate()
}

Checks whether ACM Certificates in your account are marked for expiration within 90 days

aws.acm.certificates
  .where(status != /PENDING_VALIDATION/)
  .all(notAfter - notBefore <= 90 * time.day);

References

• What Is AWS Certificate Manager?
• Security in AWS Certificate Manager