2개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
2
Hi,
AWS Certificate Manager can support the re-import feature. The ARN of the certificate will not change and the newly imported certificate will be automatically deployed to the associated resources. However, during the reimport process we have some restrictions on old and new certificate:
- You can add or remove domain names.
- You cannot remove all of the domain names from a certificate.
- If Key Usage extensions are present in the originally imported certificate, you can add new extension values, but you cannot remove existing values.
- If Extended Key Usage extensions are present in the originally imported certificate, you can add new extension values, but you cannot remove existing values.
- The key type and size cannot be changed.
- You cannot apply resource tags when reimporting a certificate.
However, there is no restriction that your Issuer must be the same CA, so even if the CA is changed, you still can perform reimport as long as the above conditions are met.
https://docs.aws.amazon.com/acm/latest/userguide/import-reimport.html
답변함 4달 전
