AWS canary would be able to validate the DigiCert certs

0

would be able to validate the DigiCert certs in AWS canary?

1개 답변
0

If your question is can I use Amazon Cloudwatch Canary to validate digital certificates then the answer is yes.

To validate digital certificates in a canary, you'll need to incorporate certificate validation into your canary script.

In your canary script, you'll need to make an HTTPS request to the endpoint you want to validate and then check the certificate details.

The script will need to do the following:

  1. Makes an HTTPS request to your specified hostname.
  2. Retrieves the peer certificate.
  3. Logs important certificate details.
  4. Checks the certificate details.
  5. Verifies that the certificate hasn't expired.

To use this in Amazon Cloudwatch Canary:

Go to the Amazon CloudWatch console and create a new canary or edit an existing one.
In the script editor, paste the code .
Save and run the canary.

Documentation is here

https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch_Synthetics_Canaries_Create.html

Remember to adjust the error handling and logging to fit your needs. You might want to set up alarms based on the canary's success/failure or specific log patterns.

Also, note that certificate validation can be complex. Depending on your specific security requirements, you might need to add more thorough checks or use a dedicated certificate validation library.

AWS
답변함 2달 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠