How to add SSL certificate to AWS EC2 with the help of new AWS Certificate Manager service

by

Q: Can I use certificates on Amazon EC2 instances or on my own servers?

No. At this time, certificates provided by ACM can only be used with specific AWS services.

Q: With which AWS services can I use certificates provided by ACM?

You can use ACM with the following AWS services:

• Elastic Load Balancing

• Amazon CloudFront

• AWS Elastic Beanstalk

• Amazon API Gateway

https://aws.amazon.com/certificate-manager/faqs/

You can’t install the certificates created by Amazon Certificate Manager (ACM) on resources you have direct low-level access to, like EC2 or servers outside of AWS, because you aren’t provided with access to the private keys. These certs can only be deployed on resources managed by the AWS infrastructure — ELB and CloudFront — because the AWS infrastructure holds the only copies of the private keys for the certificates that it generates, and maintains them under tight security with auditable internal access controls.

You’d have to have your EC2 machines listening behind CloudFront or ELB (or both, cascaded, would also work) in order to use these certs for content coming from EC2… because you can’t install these certs directly on EC2 machines.

More Related Contents:

  1. Increasing client_max_body_size in Nginx conf on AWS Elastic Beanstalk
  2. How do you add swap to an EC2 instance?
  3. Opening port 80 EC2 Amazon web services [closed]
  4. Cannot ping AWS EC2 instance
  5. SSH to Elastic Beanstalk instance
  6. Permission denied (publickey) when SSH Access to Amazon EC2 instance [closed]
  7. Connect to Amazon EC2 file directory using Filezilla and SFTP
  8. “UNPROTECTED PRIVATE KEY FILE!” Error using SSH into Amazon EC2 Instance (AWS)
  9. Add Keypair to existing EC2 instance
  10. Amazon S3 – HTTPS/SSL – Is it possible? [closed]
  11. How to get Elastic Beanstalk nginx-backed proxy server to auto-redirect from HTTP to HTTPS?
  12. Proper access policy for Amazon Elastic Search Cluster
  13. Amazon EC2 custom AMI not running bootstrap (user-data)
  14. Fetching AWS instance metadata from within Docker container?
  15. EC2 t2.medium burstable credit “savings” calculation
  16. aws billing information using aws java sdk
  17. What is difference between Lightsail and EC2? [closed]
  18. Can you connect to Amazon ElastiСache Redis outside of Amazon?
  19. Query EC2 tags from within instance
  20. AWS S3 Bucket Access from EC2
  21. scp (secure copy) to ec2 instance without password
  22. AWS Difference between a snapshot and AMI
  23. Amazon AWS Filezilla transfer permission denied
  24. How to fire EC2 instances and upload/run a startup script on each of them?
  25. Terraform: state management for multi-tenancy
  26. Get last modified object from S3 using AWS CLI
  27. Why do we need private subnet in VPC?
  28. AWS EFS vs EBS vs S3 (differences & when to use?) [closed]
  29. Difference between upload() and putObject() for uploading a file to S3?
  30. How can I join tables in AWS DynamoDB?

Leave a Comment