12-ACM
Module creating ACM Certificate with DNS validation
Stage Modulemodules/12-acm
Purpose
Creates SSL/TLS certificate for ALB internet-facing (HTTPS listener 443).
Configuration
| Variable | Default | Description |
|---|---|---|
| acm_domain_name | *.milu.jp | Wildcard domain for certificate |
Warning
terraform apply may hang at aws_acm_certificate_validation if CNAME record is not created on DNS provider.
DNS Validation
To validate certificate, create a CNAME record:
DNS Validation
# Get validation CNAME
aws acm describe-certificate --certificate-arn <arn>
# Output includes:
# DomainValidationOptions:
# - DomainName: *.milu.jp
# ResourceRecord:
# Name: _abc123.milu.jp.
# Type: CNAME
# Value: _xyz789.acm-validations.aws.
# Create this CNAME record on your DNS providerOutputs
| Name | Description |
|---|---|
| certificate_arn | Certificate ARN (used by ALB listener) |