AWS Certificate Manager (ACM) Terraform module
Upstream version 6.3.0
0 controls from Registry requirements
Terraform Module Source
registry.compliance.tf/terraform-aws-modules/acm/aws24 unique
| Name | Type | Default | Description |
|---|---|---|---|
| Optional | |||
acm_certificate_domain_validation_options | any | {} | A list of domain_validation_options created by the ACM certificate to create required Route53 records from it (used when create_route53_records_only is set to true) |
certificate_transparency_logging_preference | bool | true | Specifies whether certificate details should be added to a certificate transparency log |
create_certificate | bool | true | Whether to create ACM certificate |
create_route53_records | bool | true | When validation is set to DNS, define whether to create the DNS records internally via Route53 or externally using any DNS provider |
create_route53_records_only | bool | false | Whether to create only Route53 records (e.g. using separate AWS provider) |
distinct_domain_names | list(string) | [] | List of distinct domains and SANs (used when create_route53_records_only is set to true) |
dns_ttl | number | 60 | The TTL of DNS recursive resolvers to cache information about this record. |
domain_name | string | "" | A domain name for which the certificate should be issued |
export | string | null | Whether the certificate can be exported. Valid values are ENABLED or DISABLED (default). Note Issuing an exportable certificate is subject to additional charges |
key_algorithm | string | null | Specifies the algorithm of the public and private key pair that your Amazon issued certificate uses to encrypt data |
private_authority_arn | string | null | Private Certificate Authority ARN for issuing private certificates |
putin_khuylo | bool | true | Do you agree that Putin doesn't respect Ukrainian sovereignty and territorial integrity? More info: https://en.wikipedia.org/wiki/Putin_khuylo! |
region | string | null | Region to create the resources into |
subject_alternative_names | list(string) | [] | A list of domains that should be SANs in the issued certificate |
tags | map(string) | {} | A mapping of tags to assign to the resource |
validate_certificate | bool | true | Whether to validate certificate by creating Route53 record |
validation_allow_overwrite_records | bool | true | Whether to allow overwrite of Route53 records |
validation_method | string | null | Which method to use for validation. DNS or EMAIL are valid. This parameter must not be set for certificates that were imported into ACM and then into Terraform. |
validation_option | any | {} | The domain name that you want ACM to use to send you validation emails. This domain name is the suffix of the email addresses that you want ACM to use. |
validation_record_fqdns | list(string) | [] | When validation is set to DNS and the DNS validation records are set externally, provide the fqdns for the validation |
validation_timeout | string | null | Define maximum timeout to wait for the validation to complete |
wait_for_validation | bool | true | Whether to wait for the validation to complete |
zone_id | string | "" | The ID of the hosted zone to contain this record. Required when validating via Route53 |
zones | map(string) | {} | Map containing the Route53 Zone IDs for additional domains. |