AWS re:Post을(를) 사용하면 다음에 동의하게 됩니다. AWS re:Post 이용 약관
AWS re:Postre:Post

Lightsail Loadbalancer validate Certificate

0

Hi all, I'm new toward hosting a website for my own knowledge. So i followed some youtube tutorial which worked for that youtuber. But somehow when I create a Load Balancer in Lightsail and also create a certificate, after putting a subdomain.domain.com, the status has been "Attempting to validate your certificate…" which i suspect there's an issue since it been quite awhile. So i am looking for solutions if someone know how to solve this. For additional info: I brought my domain at Hostinger, but i'm not going to use my domain for my instance/work because i may need to use it for others project as well. So that's why i wanted to use only the subdomain with the help of Route 53. But here I am encounter this validating my certificate take too long.

주제
컴퓨팅네트워킹 및 콘텐츠 전송
태그
아마존 Lightsail아마존 루트 53
언어
English
Nicolas
질문됨 한 달 전125회 조회
1개 답변
0

Hi,

For certificate validation, you need to have your registered domain delegating to a DNS zone and then add a CNAME record provided by Lightsail, added to this DNS zone.

So, you have mentioned your domain is registered with Hostinger, but where is your DNS management being done at present? You can use either Lightsail's DNS management OR Route53's DNS management - but best to stick with just one of these i.e. you do NOT want to have both a Lightsail DNS zone and a Route53 hosted-zone - since the domain can only delegate to one of these.

Next you would need to setup records in your DNS zone for both your sub-domain and add the certificate CNAME record. Once all these pieces are correctly linked and AWS is able to verify it, the certificate will get validated.

The steps would be as follows:

  1. Create Lightsail DNS zone OR Route53 hosted-zone (pick one)
  2. Update the Name servers at Hostinger with the name servers provided by Lightsail DNS zone (all further steps assume Lightsail DNS zone, but same can be done instead in Route53 hosted-zone)
  3. Confirm the name server update is successful at Hostinger (if they provide such visibility)
  4. Another way to confirm that name server update is successful, is to run command dig NS <replace-with-your-domain-name> and check that the response lists the name servers you entered that were provided by and match those of Lightsail DNS zone
  5. Add CNAME record to the Lightsail DNS zone for your sub-domain with value as the load-balancer's default endpoint
  6. Add a second CNAME record to the Lightsail DNS zone with name and value as provided by the load-balancer certificate
  7. Confirm first record is correct. One way is to run command dig CNAME <replace-with-your-sub-domain-name> and check that the response lists the load-balancer endpoint (and optionally some IPs)
  8. Confirm second record is correct. One way is to run command dig CNAME <replace-with-name-from-certificate's-validation-record> and check that the response lists the value from the certificate's validation record
  9. Wait few minutes and the certificate should get validated

Thanks.

profile pictureAWS
전문가
AWS-SUM
답변함 한 달 전
profile picture
전문가
Adeleke Adebowale J
검토됨 한 달 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠