All Products
Search
Document Center

Cloud Config:ssl-certificate-expired-check

Last Updated:Jun 22, 2026

If the number of days until an SSL certificate expires is greater than the specified threshold, the resource is evaluated as Compliant.

Scenarios

Detect SSL certificates that are about to expire so you can renew them before they cause service interruptions.

Risk level

Default risk level: high.

You can change the risk level when you apply this rule.

Compliance evaluation logic

If the number of days until an SSL certificate expires is greater than the specified threshold, the resource is evaluated as Compliant.

Rule details

Parameter

Description

Rule Template Name

ssl-certificate-expired-check

Rule Template Identifier

ssl-certificate-expired-check

Tag

SSL and Certificate

Automatic remediation

Not supported

Invoke Type

Periodic: Every 24 hours

Supported resource type

ACS::SSLCertificatesService::Certificate

Input parameter

days. Default value: 30