Neglected assets

ELBv2 ACM certificate expires within 7 days

Risk Level

Hazardous (3)



The ACM certificate {Listeners.Certificate.Arn} (issuer name:{Listeners.Certificate.IssuerName}), attached to the ELB listener {Listeners}, is set to expire at '{Listeners.Certificate.ExpirationDate}'. AWS Certificate Manager (ACM) lets users create, manage, and use SSL/TLS certificates for different AWS resources, including Elastic Load Balancers. If a certificate expires before renewal, it can no longer be used to encrypt a load balancer's communication with its clients.
  • Recommended Mitigation

    Ensure that all ACM-issued SSL/TLS certificates are renewed before expiry.