Amazon AWS Private CA Policy
Updated Jun. 30 2021

This solution implements two AWS Lambda functions that allow enforcement of enterprise security policy for certificate requests directed at an Amazon Certificate Manager Private CA. The solution uses the VCert-Go library to retrieve enterprise security policy from Venafi Trust Protection Platform or Venafi as a Service.
Business Outcomes
  • Get certificate visibility by maintaining a certificate inventory across many AWS instances for audit and compliance

  • Enforce security policy by ensuring all certificates are compliant with corporate security and audit policies

Integration Features
  • Enforces security team policies for certificate requests directed at ACM Private CA

  • Eliminates complexity and errors by automating the certificate lifecycle

Solution Overview

This solution implements two AWS Lambda functions that allow enforcement of enterprise security policy for certificate requests directed at an Amazon Certificate Manager Private CA. The solution uses the VCert-Go library to retrieve enterprise security policy from Venafi Trust Protection Platform or Venafi as a Service.