Working with IAM Server Certificates

This Python example shows you how to carry out basic tasks in managing server certificates for HTTPS connections.

The Scenario

To enable HTTPS connections to your website or application on AWS, you need an SSL/TLS server certificate. To use a certificate that you obtained from an external provider with your website or application on AWS, you must upload the certificate to IAM or import it into AWS Certificate Manager.

In this example, python code is used to handle server certificates in IAM. The code uses the Amazon Web Services (AWS) SDK for Python to manage server certificates using these methods of the IAM client class:

All the example code for the Amazon Web Services (AWS) SDK for Python is available here on GitHub.

For more information about server certificates, see Working with Server Certificates in the IAM User Guide.

Prerequisite Task

To set up and run this example, you must first configure your AWS credentials, as described in Quickstart.

List Your Server Certificates

List the server certificates stored in IAM. If none exist, the action returns an empty list.

The example below shows how to:

For more information about paginators see, Paginators

Example

import boto3

# Create IAM client
iam = boto3.client('iam')

# List server certificates through the pagination interface
paginator = iam.get_paginator('list_server_certificates')
for response in paginator.paginate():
    print(response['ServerCertificateMetadataList'])

Get a Server Certificate

Get information about the specified server certificate stored in IAM.

The example below shows how to:

Example

import boto3


# Create IAM client
iam = boto3.client('iam')

# Get the server certificate
response = iam.get_server_certificate(ServerCertificateName='CERTIFICATE_NAME')
print(response['ServerCertificate'])

Update a Server Certificate

Update the name and/or the path of the specified server certificate stored in IAM.

The example below shows how to:

Example

import boto3

# Create IAM client
iam = boto3.client('iam')

# Update the name of the server certificate
iam.update_server_certificate(
    ServerCertificateName='CERTIFICATE_NAME',
    NewServerCertificateName='NEW_CERTIFICATE_NAME'
)

Delete a Server Certificate

Delete the specified server certificate.

The example below shows how to:

Example

import boto3


# Create IAM client
iam = boto3.client('iam')

# Delete the server certificate
iam.delete_server_certificate(
    ServerCertificateName='CERTIFICATE_NAME'
)