12-ACM

Module creating ACM Certificate with DNS validation

Stage Modulemodules/12-acm

Purpose

Creates SSL/TLS certificate for ALB internet-facing (HTTPS listener 443).

Configuration

VariableDefaultDescription
acm_domain_name*.milu.jpWildcard domain for certificate

Warning

terraform apply may hang at aws_acm_certificate_validation if CNAME record is not created on DNS provider.

DNS Validation

To validate certificate, create a CNAME record:

DNS Validation
# Get validation CNAME
aws acm describe-certificate --certificate-arn <arn>

# Output includes:
# DomainValidationOptions:
#   - DomainName: *.milu.jp
#     ResourceRecord:
#       Name: _abc123.milu.jp.
#       Type: CNAME
#       Value: _xyz789.acm-validations.aws.

# Create this CNAME record on your DNS provider

Outputs

NameDescription
certificate_arnCertificate ARN (used by ALB listener)