API Gateway REST API stages should be configured to use SSL certificates for backend authentication

This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Description

This control verifies whether SSL certificates are configured for Amazon API Gateway REST API stages. These certificates are used by backend systems to confirm that incoming requests originate from API Gateway.

To enable backend systems to authenticate that requests come from API Gateway, REST API stages in API Gateway should be configured with SSL certificates.

Remediation

To learn how to configure SSL certificates for API Gateway REST APIs, refer to the Generate and configure an SSL certificate for backend authentication section of the API Gateway Developer Guide documentation.