Our Blog

Amazon CloudFront announces support for mutual TLS authentication

Published
November 24, 2025
https://aws.amazon.com/about-aws/whats-new/2025/11/amazon-cloudfront-mutual-tls-authentication/

Amazon CloudFront Mutual TLS Authentication

Amazon CloudFront now supports mutual TLS Authentication (mTLS), a security protocol that requires both the server and client to authenticate each other using X.509 certificates. This enables customers to validate client identities at CloudFront's edge locations, helping protect against unauthorized access and security threats.

Previously, customers had to implement and maintain their own client access management solutions. Now, with mutual TLS, customers can easily validate client identities at the AWS edge before connections are established with their application servers or APIs.

Example use cases include:

  • B2B secure API integrations for enterprises
  • Client authentication for IoT

Customers can configure mutual TLS with CloudFront using the AWS Management Console, CLI, SDK, CDK, and CloudFormation. For detailed implementation guidance and best practices, visit the CloudFront Mutual TLS (viewer) documentation.

Mutual TLS authentication is available to all CloudFront customers at no additional cost.

Source: AWS release notes




If you need further guidance on AWS, our experts are available at AWS@westloop.io. You may also reach us by submitting the Contact Us form.

Follow our blog

Get the latest insights and advice on AWS services from our experts.

By clicking Sign Up you're confirming that you agree with our Terms and Conditions.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Related posts

Check out other insights from the team at West Loop Strategy.

View all
https://aws.amazon.com/about-aws/whats-new/2025/11/amazon-connect-metrics-completion-agent-performance-evaluations

Amazon Connect now provides metrics on completion of agent performance evaluations by managers

Amazon Connect now provides metrics that measure completion of agent performance evaluations, improving manager productivity and evaluation consistency
Read more
https://aws.amazon.com/about-aws/whats-new/2025/11/ec2-r8i-r8i-flex-instances-additional-regions/

Amazon EC2 R8i and R8i-flex instances are now available in additional AWS regions

Starting today, Amazon Elastic Compute Cloud (Amazon EC2) R8i and R8i-flex instances are available in the Asia Pacific (Sydney), Canada (Central) and US West (N
Read more
https://aws.amazon.com/about-aws/whats-new/2025/11/aws-waf-web-bot-auth-support

AWS WAF announces Web Bot Auth support

Today, we're excited to announce the addition of Web Bot Auth (WBA) support in AWS WAF, providing a secure and standardized way to authenticate legitimate AI agents and automated tools accessing web applications
Read more
View all