Skip to content
QCecuring Documentation

AWS Private CA

AWS Private CA Integration

Section titled “AWS Private CA Integration”

Short Summary: Issue certificates from a highly available, cloud-managed Private CA.

Prerequisites

Section titled “Prerequisites”
  • AWS Credentials: Access Key/Secret Key or IAM Role (if running on EC2).
  • Permissions Policy: 
    {
        "Effect": "Allow",
        "Action": [
            "acm-pca:IssueCertificate",
            "acm-pca:GetCertificate",
            "acm-pca:ListCertificateAuthorities"
        ],
        "Resource": "*"
    }

Configuration

Section titled “Configuration”
  1. Navigate: Admin > CA Gateways > Add New.
  2. Select Provider: AWS Private CA.
  3. Region: e.g., us-east-1.
  4. CA ARN: The ARN of your Private CA (e.g., arn:aws:acm-pca:us-east-1:123456789012:certificate-authority/...).

Features

Section titled “Features”
  • High Availability: Inherits AWS SLA.
  • Short-Lived Certs: Fully supported.
  • Revocation: Supported via CRL/OCSP managed by AWS.