Vendor services misconfigurations

CloudFront distributions should use custom SSL/TLS certificates

Platform(s)
Compliance Frameworks

Description

Amazon CloudFront is a high-performance content delivery network (CDN) service that securely delivers data, videos, apps, and APIs to customers around the world with low latency and high transfer speeds. When CloudFront is configured to use costume SSL/TLS certificate, users can access content by using alternate domain names. It was detected that CloudFront Distribution '{AwsCloudFront}' uses the default SSL/TLS certificate.

  • Recommended Mitigation

    It is recommended to use custom SSL/TLS certificate in order to allow your users to access content by using alternate domain names. You can store custom certificates in AWS Certificate Manager (recommended), or in IAM.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.