Reputation: 5095
How do I retrieve the private key for a certificate generated on AWS Certificate Manager?
Someone purchased a wildcard certificate via AWS Certificate Manager for their domain name and I need to transfer it to Heroku for an app that uses a sub-domain of the domain name.
I can't figure out, either through the AWS Console or through their CLI, how I would get the private key used to generate the CSR for this certificate? Can anyone on here help me?
Upvotes: 32
Views: 40879
Answers (1)
Reputation: 9318
You can't. That's one of the points of using AWS Certificate Manager: the private keys won't leave AWS infrastructure. You can't even use AWS Certificate Manager certs on EC2 today, only on specific services. More information here and here.
Edit: You can now use private certificates issued with ACM Private CA with EC2 instances, see more info here. However, that is only useful for private networks, as major browsers won't recognize ACM Private CA by default.
Upvotes: 49
Related Questions
- AWS: Using TLS-certificate without private key
- How to retrieve AWS Private Key?
- AWS ECS - How to retrieve specific key from secret manager?
- How to access certificate details and private key from AWS certificate manager in java to build SSLContext?
- How to find private key of SSL certificate generated via Marklogic certificates template?
- trying to find my ssl certificate I created on AWS Certificates
- Get Privatekey for AWS SSL
- AWS Certificate Manager - How to download public key?
- How to locate the private key of a certificate in Windows
- How to get private key of a pkcs12 certificate that I created using keytool