Services or capabilities described in this page might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China Regions. Only “Region Availability” and “Feature Availability and Implementation Differences” sections for specific services (in each case exclusive of content referenced via hyperlink) in Getting Started with Amazon Web Services in China Regions form part of the Documentation under the agreement between you and Sinnet or NWCD governing your use of services of Amazon Web Services China (Beijing) Region or Amazon Web Services China (Ningxia) Region (the “Agreement”). Any other content contained in the Getting Started pages does not form any part of the Agreement.

Amazon Certificate Manager Documentation

Centrally manage certificates on the Amazon Web Services Cloud

You can centrally manage Amazon Certificate Manager Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates provided by Amazon Certificate Manager in an Amazon Web Services China Region from the Amazon Web Services Management Console, Amazon CLI, or Amazon Certificate Manager APIs. You can also audit the use of each certificate by reviewing your Amazon CloudTrail logs.

Secure key management

Amazon Certificate Manager is designed to protect and manage the private keys used with SSL/TLS certificates. Strong encryption and key management best practices are used when protecting and storing private keys.

Integrated with other Amazon Web Services cloud services

Amazon Certificate Manager is integrated with other services of Amazon Web Services China Regions, so you can provision an SSL/TLS certificate and deploy it with your Elastic Load Balancer, Amazon CloudFront distribution or API in Amazon API Gateway. Amazon Certificate Manager also works with Amazon Elastic Beanstalk and Amazon CloudFormation for public email-validated certificates to help you manage public certificates and use them with your applications in the Amazon Web Services Cloud.

Import third-party certificates

Amazon Certificate Manager allows you to import SSL/TLS certificates issued by third-party CAs and deploy them with your Elastic Load Balancers, Amazon CloudFront distributions and APIs on Amazon API Gateway. You can monitor the expiration date of an imported certificate and import a replacement when the existing certificate is nearing expiration. Alternatively, you can request a certificate from Amazon Certificate Manager and let us manage future renewals for you.

Additional Information

For additional information about service controls, security features and functionalities, including, as applicable, information about storing, retrieving, modifying, restricting, and deleting data, please see https://docs.amazonaws.cn/en_us. This additional information does not form part of the Documentation for purposes of the Sinnet Customer Agreement for Amazon Web Services (Beijing Region), Western Cloud Data Customer Agreement for Amazon Web Services (Ningxia Region) or other agreement between you and Sinnet or NWCD governing your use of services of Amazon Web Services China Regions.