Skip to main content

Amazon AWS: Free SSL Certificates and Renewals

Maintaining SSL certificates used to be the bane of my existence mainly because it is ALWAYS crazy different depending on where you are deploying, what OS, whether or not you have openSSL installed etc....

Reason #42 why I love AWS ? SSL certs are free, and easy to manage now.
How do I acquire this great sweetness, you ask?

1. ACM (Amazon Certificate Manager)

Log into your AWS console and under the list of services is "Certificate Manager."  Click it!






2. Type in the domain you want to secure.  

I HIGHLY recommend you use *.yourdomain.com which creates a wildcard cert, and will work for any host you decide to come up with later.  Click "Review and Request" to continue, and then "Confirm and Request" to get things going.



3. Amazon send an email for approval

The email goes to the owner of the domain (it IS you, right ?) and also sends it to webmaster@yourdomain and a few other common administrator addresses with a simple request to approve the SSL cert.



4. Use it!

Once the cert is approved, it is SUPER easy to use with your load balancer.  Go to your EC2 Dashboard, scroll down and click on "Load Balancers." Add or edit the HTTPS / Port 443 settings, and under SSL certificate, choose your new cert from the ACM drop-down!



And its that easy!  This is a great value-add that somehow missed my radar when they announced it.  Being able to quickly provision an SSL cert is nice, but the auto-renewals, and all for free? That is icing.  Plus it works for free tier service!  Just great for startups!

Yet another reason to love Amazon AWS.  Thanks Amazon AWS for the developer-friendly love!


Popular posts from this blog

Installing python 3.4.x on OSX El Capitan

I love "brew" package manager, but sometimes being too progressive breaks things.  I have several python apps that I maintain that get deployed to AWS using Elastic Beanstalk.  AWS eb can deploy with python 2.7 or 3.4.  Any recent 'brew install python3" will get 3.5.1. #annoying

Making Macbook Air with 128GB SSD usable with Bootcamp

I recently got a new Macbook Air 11" (the 2012 version) and loaded it with goodies like 8GB ram and 2GHz Core i7.  What I DIDN'T upgrade was the internal SSD.  My config came with 128GB SSD and I refused to pay $300+ to upgrade it to 256GB.  Yeah I know, some call me cheap, but SSds cost $75-$150 for 240GB, so adding another 128GB for $300 seemed way too steep for me.  I figured "ok, I'm going to make 128G work!"

Here is the story of how that went...

Election day plus 1: Social Media Nightmare

It is election day plus 1, and a very emotional day with no way to win for many.

Social media was a force to be reckoned with this election year.  No matter what position you take, the world is ready to pounce on you and tell you why YOU are evil, intolerant or a deplorable -- and the reason for all their woes.  This isn't a new problem, though...  All of the liberal vs conservative issues are causing rifts between otherwise civil people, and it seems to be the worst on Facebook and twitter.

If I say I am for Hillary:
i am part of the "corrupt system."

If I say I am against Hillary:
I am stupid and uneducated

If I say I am for Trump:
I am against women,
I am religiously intolerant,
I am a bigot

If I say I am against Trump:
I am against the 2nd amendment,
I don't have any idea how government works,
I am part of the problem with American society,
I am against the police

Stay with me now, this isn't meant to make people angry, but it is mean to shine some light on a social …