Can I use the new free SSL/TLS AWS certificates without ELB or Beanstalk on plain EC2?

Q: Can I use certificates on Amazon EC2 instances or on my own servers?

No. At this time, certificates provided by ACM can only be used with specific AWS services.

Q: With which AWS services can I use certificates provided by ACM?

You can use ACM with the following AWS services:

• Elastic Load Balancing

• Amazon CloudFront

• AWS Elastic Beanstalk

• Amazon API Gateway

• AWS CloudFormation

https://aws.amazon.com/certificate-manager/faqs/

The certificates created by Amazon Certificate Manager (ACM) have corresponding private keys that are stored securely within the AWS infrastructure and are not accessible to you... which means you can't deploy these certs directly on systems you have direct access to, like EC2 servers.

You can only use them on services front-ended by Elastic Load Balancer, CloudFront, or both. As CloudFront, unlike ELB, has no monthly baseline cost, it seems like this would be a usable alternative for you, since cost is usually the motivation for not using ELB.


You can use free LetsEncrypt SSL certificates with single instance Elastic Beanstalk: http://bluefletch.com/blog/domain-agnostic-letsencrypt-ssl-config-for-elastic-beanstalk-single-instances/

Tags:

Amazon Web Services

Amazon Ec2

Ssl Certificate

Amazon Elb

Elastic Beanstalk

Related

Mount Point Does Not Exist, Despite Creating It systemd ignores return code while starting service How to remotely detect windows has completed patch configuration after reboot permission errors using gcsfuse as nonroot user on google compute instance How to resolve "The server you are trying to access is using an authentication protocol not supported by this version of Office"? Remove reboot request for DISM Failed to load resource: net::ERR_CONNECTION_RESET hard resetting link exception Emask 0x50 SAct 0x0 SErr 0x4090800 action 0xe frozen Mail with DKIM Signature gets T_DKIM_INVALID flag by SpamAssassin Error with gunzip during logrotate Is docker suitable to be used for long running containers? On windows 10, how do I setup a VPN client so that all users can use it (i.e. available before login)

Recent Posts