Home icon

Amazon CloudFront announces support for mutual TLS authentication

News

This article announces Amazon CloudFront's support for mutual TLS (mTLS) authentication, enabling secure client validation at edge locations.

  • mTLS requires both server and client to authenticate using X.509 certificates
  • Validates client identities at CloudFront edge before backend connections
  • Eliminates need for custom client access management solutions
  • Supports B2B API security and IoT device authentication use cases
  • Works with third-party or AWS Private Certificate Authority
  • Available at no additional cost to all CloudFront customers
  • Configurable via AWS Console, CLI, SDK, CDK, and CloudFormation

CloudFront's mTLS support simplifies secure client authentication at scale without additional infrastructure overhead.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Related articles

Feb 2
2026
Amazon CloudFront announces mutual TLS support for origins
Nov 20
2025
Amazon CloudFront now supports TLS 1.3 for origin connections
Feb 2
2026
Amazon CloudFront now supports mTLS authentication to origins
May 14
2026
Amazon CloudFront announces Passthrough Mode for mutual TLS (Viewer)

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.