Vendor services misconfigurations

CloudFront distributions should use custom SSL/TLS certificates


Amazon CloudFront is a high-performance content delivery network (CDN) service that securely delivers data, videos, apps, and APIs to customers around the world with low latency and high transfer speeds. When CloudFront is configured to use costume SSL/TLS certificate, users can access content by using alternate domain names. It was detected that CloudFront Distribution '{AwsCloudFront}' uses the default SSL/TLS certificate.
  • Recommended Mitigation

    It is recommended to use custom SSL/TLS certificate in order to allow your users to access content by using alternate domain names. You can store custom certificates in AWS Certificate Manager (recommended), or in IAM.