Home > Guides > Dashboard Users Guide > Clouds > AWS Global > CloudFront Origin Access Identities > Actions > Create Amazon CloudFront Key Pairs

Copyright (c) 2006-2014 MindTouch Inc.

This file and accompanying files are licensed under the MindTouch Master Subscription Agreement (MSA).

At any time, you shall not, directly or indirectly: (i) sublicense, resell, rent, lease, distribute, market, commercialize or otherwise transfer rights or usage to: (a) the Software, (b) any modified version or derivative work of the Software created by you or for you, or (c) MindTouch Open Source (which includes all non-supported versions of MindTouch-developed software), for any purpose including timesharing or service bureau purposes; (ii) remove or alter any copyright, trademark or proprietary notice in the Software; (iii) transfer, use or export the Software in violation of any applicable laws or regulations of any government or governmental agency; (iv) use or run on any of your hardware, or have deployed for use, any production version of MindTouch Open Source; (v) use any of the Support Services, Error corrections, Updates or Upgrades, for the MindTouch Open Source software or for any Server for which Support Services are not then purchased as provided hereunder; or (vi) reverse engineer, decompile or modify any encrypted or encoded portion of the Software.

A complete copy of the MSA is available at http://www.mindtouch.com/msa

Create Amazon CloudFront Key Pairs

Table of Contents


To generate an Amazon CloudFront key pair so that you can create signed URLs to access private content from a CloudFront distribution.

Table of Contents


AWS Account with the CloudFront Service enabled. 


CloudFront uses access keys to authenticate requests you make to CloudFront.  Trusted signers with at least one CloudFront key pair can create signed URLs that can be used to temporarily access private content that's stored in your origin server (S3 bucket).

Unfortunately, you cannot create CloudFront Key Pairs inside the Dashboard.  You must create them using the AWS Management Console.


  • Log into your AWS Account at http://aws.amazon.com.
  • Go to Account -> Security Credentials.
  • Under "Access Credentials" click the "Key Pairs" tab.
  • You can either create a new key pair or upload the public key of an existing key pair.


Each CloudFront key pair includes a public key, private key, and an ID for the key pair.  You can only have up to two key pairs per AWS account. 

Here is an example of a signed url:


Notice that the signed url contains the public CloudFront Access Key ID and an expiration date (default = 24 hrs).

You must to post a comment.
Last modified
22:09, 16 May 2013



This page has no classifications.



Glossary | 用語용어 Site Map | Site Help Community Corporate Site Get Support Dashboard Login
Doc Feedback Product Feedback Resources MultiCloud Marketplace Forums

Dashboard Status

© 2006-2014 RightScale, Inc. All rights reserved.
RightScale is a registered trademark of RightScale, Inc. All other products and services may be trademarks or servicemarks of their respective owners.