AWS ACM Moving to Dynamic Intermediates

I wonder how many things are going to break when AWS changes how ACM certs are issued. They’re moving to “dynamic” (ie, randomly allocated) intermediates starting 11th October 2022, which is surprisingly soon!

They say not to use certificate pinning, but lots of people do, and I’m sure there’s a load of custom config/deployment methods out there that’ll rely on some kind of static intermediate.

Good luck, friends!

#AWS #TLS #Certificates #ACM