Overview

An Amazon S3 bucket is a storage resource available in AWS Simple Storage Service (AWS S3). For more information on Amazon S3 and AWS S3 buckets, refer to the AWS documentation on Amazon Simple Storage Service (S3).

The AWS S3 Publisher publishes certificates and CRL files to an AWS S3 bucket. The publisher uses the AWS CLI to perform the S3 bucket operations. The AWS CLI is installed by default on the AWS EJBCA Cloud instance and can be installed separately on other EJBCA software installations.

This guide walks an administrator through the steps to configure the AWS CLI, the S3 bucket, and the AWS S3 Publisher. For CRLs, a DNS CName can be added to make a friendly URL which may then be placed in a Certificate Profile as a Certificate Distribution Point (CDP).