Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

Adding SSL to domain hosted on route 53 AWS

I have added an IP to route 53 to make it a domain name and its working fine. But I dont know how could I add an ssl to that domain. Can anyone please refer me something how to do it?

like image 366
Junaid Farooq Avatar asked Nov 23 '16 10:11

Junaid Farooq


People also ask

How do I add a SSL certificate to AWS?

There are three steps to install an SSL/TLS certificate on your EC2 Windows instance: Create a Certificate Signing Request (CSR) and request your SSL certificate. Install your SSL certificate. Assign the SSL certificate to your IIS deployment.

How do I add an SSL certificate to my domain?

In the Websites and Domains section for the domain name you want to use, click SSL/TLS Certificates. Click Add SSL Certificate. Enter a Certificate name, complete the fields in the Settings section, and then click Request.

How do I enable SSL on hosting?

Activating the SSL certificate on your websiteClick on SSL/TLS under Security in cPanel. Under Install and Manage SSL for your site (HTTPS), click on Manage SSL sites. Under Install an SSL Website, click on Browse Certificates. Select the SSL certificate to activate.


2 Answers

Route 53 is DNS service. So you cannot add SSL to Domain directly in its. The way you should do is point you domain name to server ip. Then you create SSL in that server.

Here is route 53 explaination : https://aws.amazon.com/route53/

After you point it to server or some service you are using , you can generate SSL certificate from that server with https://letsencrypt.org/ Then, you setting up your webserver (i.e. apache,nginx) to serve your website with SSL.

Here is an Ubuntu server example : https://www.digitalocean.com/community/tutorials/how-to-secure-apache-with-let-s-encrypt-on-ubuntu-14-04

Edit New Version https://www.digitalocean.com/community/tutorials/how-to-secure-apache-with-let-s-encrypt-on-ubuntu-18-04 You have a lot of options to add SSL to your domain. It's depend on what you are developing.

like image 193
Natsathorn Avatar answered Oct 13 '22 14:10

Natsathorn


If your website is hosted in S3, you can create a cloudfront distribution for your website hosted on S3 and apply SSL certificate using AWS certificate manager (ACM).

If you are serving your website through a webserver such as apache/nginx running on say EC2 or any other platform, then you can apply a SSL purchased from a third party say GoDaddy etc. You would need to create a Private Key Infrastructure (PKI) on your server using openssh, easy-rsa etc and then generate a Certificate Signing Request(CSR), get it signed from GoDaddy or any other SSL seller. They would provide you back with signed certificate and any intermediate key. Save the returned certificate along with your private key in a secure folder say /etc/pki/tls/certs/ and then add the path of the three cert files in /etc/httpd/conf.d/ssl.conf file if you are using apache as your webserver. Once you restart apache service ,SSL certificate would be deployed to your website.

like image 43
Vikalp Veer Avatar answered Oct 13 '22 14:10

Vikalp Veer