Menu
AWS Certificate Manager
User Guide (Version 1.0)

Request a Certificate

The following sections discuss how to use the ACM console or AWS CLI to request an ACM Certificate.

To request an ACM Certificate (console)

  1. Sign into the AWS Management Console and open the ACM console at https://console.aws.amazon.com/acm. If the introductory page appears, choose Get Started. Otherwise, choose Request a certificate.

  2. On the Request a certificate page, type your domain name. You can use a fully qualified domain name (FQDN) such as www.example.com or a bare or apex domain name such as example.com. You can also use an asterisk (*) as a wildcard in the leftmost position to protect several site names in the same domain. For example, *.example.com protects corp.example.com, and images.example.com. The wildcard name will appear in the Subject field and the Subject Alternative Names extension of the ACM Certificate.

    Note

    When you request a wildcard certificate, the asterisk (*) must be in the leftmost position of the domain name and can protect only one subdomain level. For example, *.example.com can protect login.example.com, and test.example.com, but it cannot protect test.login.example.com. Also note that *.example.com protects only the subdomains of example.com, it does not protect the bare or apex domain (example.com). To protect both, see the next step.

  3. To add more domain names to the ACM Certificate, choose Add more names and type another domain name in the text box that opens. This is useful for protecting both a bare or apex domain (like example.com) and its subdomains (*.example.com).

  4. After you have entered valid domain names, choose Review and Request or choose Cancel to quit.

  5. If the review page correctly contains the information you entered for your request, choose Confirm and request. The following page shows that your request status is pending validation.

    Console shows that the certificate request is pending.

    Before an ACM Certificate can be issued, an authorized representative must validate that it was requested. For more information, see Validate Domain Ownership.

To request an ACM Certificate (AWS CLI)

Use the request-certificate command to request a new ACM Certificate on the command line.

aws acm request-certificate --domain-name www.example.com

See the AWS CLI reference for more information and examples.