I have an SSL certificate in AWS Certificate Manager (ACM) that I want to associate with my Amazon CloudFront distribution. However, I can't associate the certificate with the distribution because it is not in the US East (N. Virginia) region. Can I move the certificate to the US East (N. Virginia) region?

You can't migrate an existing certificate in ACM from one AWS Region to another. To associate an ACM Certificate with a CloudFront distribution, you must create a certificate in the US East (N. Virginia) Region.To create a new certificate in the US East (N. Virginia) Region using the ACM console, follow these steps:

  1. Open the ACM console.
  2. From the AWS region selector in the navigation bar, choose the US East (N. Virginia) Region.
  3. Choose Request a certificate.
  4. For Domain name, type the CNAME associated with the CloudFront distribution. The CNAME matches the name of the certificate in the other AWS Region.
    Note: You can use a wildcard in the certificate name.
  5. Optionally, choose Add another name to this certificate if you want to add more domain names.
  6. Choose Next.
  7. To complete your certificate request, follow the steps to validate your domain names either by using DNS or by using email.

Did this page help you? Yes | No

Back to the AWS Support Knowledge Center

Need help? Visit the AWS Support Center

Published: 2018-04-09