Recently, I had to change the certificate for this site to include the naked domain (https://gidzero.com) in addition to the subdomains. The site is hosted in S3 and exposed to the internet via cloudfront with the TLS certificate provided by Amazon Certificate Manager (ACM). All of this made generating a new certificate and swapping it in pretty straight forward. Below were the steps I took:
Create the new certificate through Amazon certificate manager (ACM) with the relevant domains and subdomains Request a public certificate Choose validation method.