Requesting a certificate from ACM for my Load balancer to route https calls
Hello there, I have an elastic beanstalk instance in the private subnet of my VPC and a load balancer in the public side routing calls to my instance. I can successfully route requests over http but am unable to generate a certificate in ACM for my load balancer to handle https requests. When I'm creating this certificate, I use the DNS name of my load balancer and choose DNS validation, but the request always fails saying I need additional verification to request certificates for this domain. What am I doing wrong? Even if I switch to email validation I don't know which email it's trying to validate to. Is it just not possible to request a ACM certificate for a load balancer?
- 新しい順
- 投票が多い順
- コメントが多い順
Hi,
When requesting an AWS-issued certificate using ACM you need to provide the actual domain you want to use. (Ex: example.com). Then it will generate a certificate for that specified domain. You can specify a wildcard domain as well (Ex: *.example.com).
AWS requires you to validate the ownership of this domain. If you select the DNS validation method, you will be required to add some CNAME records to your DNS provider. Once AWS is able to verify these records it will validate the certificate and you can use it in any supported AWS resource, in your case your load balancer. For email validation, it sends the email to the following contacts available in WHOIS
- Domain registrant
- Technical contact
- Administrative contact
Requesting a certificate -> https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-request-public.html DNS validation -> https://docs.aws.amazon.com/acm/latest/userguide/dns-validation.html Email validation -> https://docs.aws.amazon.com/acm/latest/userguide/email-validation.html
関連するコンテンツ
AWS公式更新しました 6年前
