AWS Application Load Balancer introduces Certificate Authority advertisement to simplify client behavior while using Mutual TLS
News
AWS Application Load Balancer (ALB) has introduced a new feature for Certificate Authority (CA) advertisement to improve mutual TLS client authentication:
- ALB now supports advertising CA subject names stored in its Trust Store
- When enabled, the load balancer sends a list of CA subject names to connecting clients
- Clients can use this information to identify which certificates will be accepted
- Helps reduce connection errors during mutual authentication
- Can be configured via AWS APIs, AWS CLI, or AWS Management Console
- Available in commercial AWS Regions, AWS GovCloud (US), and China Regions
This feature simplifies the certificate selection process and improves the client authentication experience for Application Load Balancers.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Nov 21
2024
2024
AWS Application Load Balancer introduces header modification for enhanced traffic control and security
Nov 21
2025
2025
AWS Application and Network Load Balancers Now Support Post-Quantum Key Exchange for TLS
May 6
2026
2026
AWS Elastic Beanstalk now supports TLS listeners for Network Load Balancers
Apr 8
2022
2022
AWS Shield Advanced now supports Application Load Balancer for automatic application layer DDoS mitigation
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.