IAM server certificate should be renewed 30 days before expiration

Documentos > Datadog Security > OOTB Rules > IAM server certificate should be renewed 30 days before expiration

Esta página aún no está disponible en español. Estamos trabajando en su traducción.
Si tienes alguna pregunta o comentario sobre nuestro actual proyecto de traducción, no dudes en ponerte en contacto con nosotros.

Description

Ensure that your IAM service SSL/TLS certificates are renewed 30 days prior to their validity period ending.

Rationale

If a certificate becomes invalid, the communication between the client and AWS resource that implements certificates is no longer secure.

Remediation

From the console

Follow the Managed renewal for ACM certificates AWS documentation to set up renewal by validation type (DNS, email, or private PKI).

From the command line

Follow the Managed renewal for ACM certificates AWS documentation to set up renewal by validation type (DNS, email, or private PKI).