AWS Certificate Manager now offers exportable TLS certificates at $15 per domain or $149 for wildcards, allowing users to access private keys for use outside AWS-controlled endpoints. The feature addresses a market need while maintaining reasonable pricing compared to traditional certificate vendors. However, the lack of ACME support means manual renewal processes, requiring careful monitoring and calendar reminders to prevent expiration issues. Organizations can disable this feature for enhanced security postures.
Table of contents
The Snake Oil Certificate EcosystemCertificate Expiry and the Manual Process ProblemThe Good NewsSort: