Importing certificates into AWS Certificate Manager - AWS Certificate Manager

Importing certificates into AWS Certificate Manager

In addition to requesting SSL/TLS certificates provided by AWS Certificate Manager (ACM), you can import certificates that you obtained outside of AWS. You might do this because you already have a certificate from a third-party issuer, or because you have application-specific requirements that are not met by ACM issued certificates.

After you import an SSL/TLS certificate obtained outside of AWS and have associated it with services integrated with ACM, you can reimport that certificate while preserving its associations and its Amazon Resource name (ARN). Multiple certificates with the same domain name can be imported, but they must be imported one at a time.

After you import a certificate, you can use it with the AWS services that are integrated with ACM. The certificates that you import work the same as those provided by ACM, with one important exception: ACM does not provide managed renewal for imported certificates.


You are responsible for monitoring the expiration date of your imported certificates and for renewing them before they expire. You can simplify this task by using Amazon CloudWatch Events to send notices when your imported certificates approach expiration. For more information, see Using CloudWatch Events.

To renew an imported certificate, you can obtain a new certificate from your certificate issuer and then import it to ACM, or you can request a new certificate from ACM.

All certificates in ACM are regional resources, including the certificates that you import. To use the same certificate with Elastic Load Balancing load balancers in different AWS Regions, you must import the certificate into each Region where you want to use it. To use a certificate with Amazon CloudFront, you must import it into the US East (N. Virginia) Region. For more information, see Supported Regions.

For information about how to import certificates into ACM, see the following topics. If you encounter problems importing a certificate, see Certificate import problems.