Here’s the latest communication from AWS:
We have identified your account as an account that uses email validated certificates issued through AWS Certificate Manager (ACM). Due to a policy change by Mozilla, the organization behind the Firefox browser, ACM can no longer automatically renew email validated certificates on your behalf.
Beginning August 2021, email validated certificates will need to be renewed every year by clicking on a validation link that will be mailed when the certificate is 45 days from expiry.
The certificates references to that message are all convox’s internal
*.convo-route-*.<region>.convox.site certs, which doesn’t enlist any email addresses for verification purposes.
How is this supposed to work please? Do they auto-renew somehow? How? What will happen to racks that are using those certs?