Menu
Didnt find any material of how to implement Cloudfront + MTLS or Api Gateway + MTLS. Is it possible? If not, is there any alternative to achieve MTLS with CloudFront + ApiGateway?
458
asked Apr 22 '26 10:04
The mTLS support for API Gateway was released yesterday. Here is a detailed blog post how to set it up:
https://aws.amazon.com/blogs/compute/introducing-mutual-tls-authentication-for-amazon-api-gateway/
169
answered Apr 25 '26 01:04
In order to use mTLS you can't use CloudFront. This is because CF does the TLS Termination and doesn't support pass-through to APIGW or other downstream services.
If you wish to use mTLS, you should point your R53 domain name directly to API GW, disable the default endpoint, and add WAF to the API instead.
38
answered Apr 25 '26 00:04
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With