AWS Access Key
Manage and use AWS Access Keys in AutoSSL.
Overview
An AWS Access Key is required to authenticate requests from AutoSSL to Amazon Web Services (AWS). By adding an Access Key, you authorize AutoSSL to perform specific actions on your behalf, such as deploying SSL certificates to your AWS resources.
Configuration Parameters
| Parameter | Description |
|---|---|
| AccessKey ID | Your AWS account or IAM user's Access Key ID. |
| Secret Access Key | The corresponding secret for your Access Key ID. This value is securely encrypted before being stored in AutoSSL. |
Important
If you need to modify the Secret Access Key field later, you must provide the full secret again.
How to Get an Access Key
- Log in to the AWS Management Console.
- In the navigation pane, choose Users.
- Create a new IAM user (or select an existing one) and navigate to the Security credentials tab.
- In the Access keys section, choose Create access key.
- Copy the Access key ID and Secret access key and paste them into AutoSSL.
For more detailed instructions, please refer to the AWS IAM documentation on creating access keys.
Security Recommendations
To improve the security of your Access Keys, we strongly recommend the following practices:
- Use IAM Users: Never use the access keys of your AWS root account. Always create a dedicated IAM user for AutoSSL.
- Principle of Least Privilege: Only grant the IAM user the exact permissions needed for the specific deployment targets you intend to use. Avoid granting broad permissions like
AdministratorAccess. - Regular Rotation: Periodically rotate your access keys to minimize the risk of leaked credentials.
Supported Deployment Targets
The AWS Access Key is used by the following deployment providers in AutoSSL:
- AWS ACM: Imports certificates into AWS Certificate Manager.
- AWS CloudFront: Deploys certificates directly to CloudFront distributions.