Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Can I use AWS own ELB certificate for HTTPS/SSL connection?

Tags:

certificate

amazon-web-services

aws-elb

I know that you can add your own certificate to the domain and point that domain to the AWS Elastic Load Balancer. In my case I don't have domain, but would like still use secure HTTPS/SSL connection when talking client <-> backend. Is it possible to enable HTTPS connection directly to ELB, i.e instead of using http://some-random-url-here.eu-west-1.elb.amazonaws.com I would like to use https://some-random-url-here.eu-west-1.elb.amazonaws.com

That would mean, that AWS would need to provide the cert for the *.elb.amazonaws.com domain. I remember at least long time ago this was possible, but maybe my memory does not serve me right?

like image 483
Maksim Luzik Avatar asked Sep 12 '18 08:09

Maksim Luzik

People also ask

Does each server behind a load balancer need their own SSL certificate?

Google Cloud uses SSL certificates to provide privacy and security from a client to a load balancer. To achieve this, the load balancer must have an SSL certificate and the certificate's corresponding private key.

How do I add HTTPS to ELB?

To add an HTTPS listener using the consoleOn the navigation pane, under LOAD BALANCING, choose Load Balancers. Select a load balancer, and choose Listeners, Add listener. For Protocol : port, choose HTTPS and keep the default port or enter a different port.

How do I create a AWS HTTPS certificate?

Sign in to the AWS Management Console and open the ACM console at https://console.aws.amazon.com/acm/home . Choose Request a certificate. In the Domain names section, type your domain name. You can use a fully qualified domain name (FQDN), such as www.example.com , or a bare or apex domain name such as example.com .

Does AWS Network Load Balancer support HTTPS?

Unlike a Classic Load Balancer or an Application Load Balancer, a Network Load Balancer can't have application layer (layer 7) HTTP or HTTPS listeners. It only supports transport layer (layer 4) TCP listeners. HTTP and HTTPS traffic can be routed to your environment over TCP.

1 Answers

Memory does not serve you right. This is not possible now and would not have been possible in the past. ELBs don't have, and it is not possible to obtain, a certificate like this (including from Amazon Certificate Manager).

In fact, 3rd party providers like Let's Encrypt also have protections to prevent you from obtaining certificates like this, since amazonaws.com is not your domain.

You will need a domain that you control.

like image 180
Michael - sqlbot Avatar answered Sep 23 '22 02:09

Michael - sqlbot
Sign in to Comment

Related questions

XML parsing in AWS Lambda function
Custom domain in free tier on AWS?
Scheduling SQS messages
Terraform aws_alb_listener_rule with host AND path conditions
Dynamically create AWS IoT topic
What is the correct way of sharing your elasticbeanstalk configuration with your team?
How do I convert local .JPG file to Base64 to work with Boto3 and Detect_Text?
AWS Connect and Lex - Cannot reference Contact Attribute
Using AWS Cognito in a Lambda function with npm
Errors while using sagemaker api to invoke endpoints
How to run Queries on Redshift Database using AWS CLI
Cloudformation does not support create vpc links in apigateway
How to turn pip / pypi installed python packages into zip files to be used in AWS Glue
Using CORS with AWS SAM
Visual Studio Code Debugger Not Stopping at Breakpoints in SAM Local
How to solve 'Client is immutable when created with the builder'?
Npgsql with netcoreapp2.0 on AWS Lambda is unable to connect (has timeout) - how can I resolve?
Reading parquet files in AWS Glue
Elastic Beanstalk instance profile not automatically created when using Terraform in eu-west-2 region
S3 buckets are not residing in VPCs?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!