问题
While certificate manager UI shows my imported certificated with status "issued" , when trying to use it from an ELB (application lb) I get: " no certificates available " (the POST request to the api returns with empty list)
Also when I run aws acm list-certificates --max-items 10 I don't get the imported certificate , only my second (Not imported) one
Any ideas what's wrong here? is there a setting on the imported certificate I should be configuring?
回答1:
I've got only half answer here: but turns out that since I imported a 4096 RSA key certificate, it's not supported for Application Load Balancer use from ACM, but it is support from the older IAM certificate storage. (AWS please get your act together)
Why this certificate does not appear on cli aws acm list-certificates but does respond to a named aws acm describe-certificate arn-here`` beats me.
回答2:
I know its late, but thought of sharing this update.
The default filtering of aws acm list-certificates returns only RSA_2048 certificates.
If you want other certificates to be included as well, use the --include parameter and specify the the desired signature types in a comma-separated list keyTypes.
Example:
aws acm list-certificates --include keyTypes=RSA_2048,RSA_4096
This command will return both 2048 and 4096 RSA key certificate. You can refer the aws acm cli documentation here
来源:https://stackoverflow.com/questions/50803422/aws-certificate-manager-api-does-not-show-imported-certificates