AWS Certificate Manager
User Guide (Version 1.0)

Getting Started with Amazon CloudFront

Amazon CloudFront is a web service that speeds up distribution of your static and dynamic web content by delivering the content through a worldwide network of edge locations. For more information, see the Amazon CloudFront Developer Guide. For more information about using HTTPS with CloudFront, see Using HTTPS with CloudFront in the Amazon CloudFront Developer Guide.

The following illustration shows how you can use ACM and CloudFront together to deliver your content securely through edge locations.

        Workflow for using ACM with CloudFront
  1. Configure your origin servers to store the original, definitive version of your content. Your origin can be either an Amazon S3 bucket or an Amazon EC2 web server instance.

  2. Create a CloudFront distribution. This tells CloudFront which origin servers to get your files from when users make requests through your web site or application.

  3. Use ACM to request a certificate or import a certificate into ACM. To use an ACM certificate with CloudFront, you must request or import the certificate in the US East (N. Virginia) region.

  4. After you validate ownership of the domain names in your certificate, ACM provisions the certificate.

  5. Use CloudFront to associate your ACM certificate with the CloudFront distribution.

  6. CloudFront sends your distribution's configuration (but not your content) to all of its edge locations. Edge locations are collections of servers in geographically dispersed data centers where CloudFront caches copies of your website or application files.

  7. When a user accesses your website and requests one or more objects, DNS routes the user to the CloudFront edge location that can best serve the request. For more information about how CloudFront delivers content to your users, see How CloudFront Delivers Content in the Amazon CloudFront Developer Guide.