- Newest
- Most votes
- Most comments
Hi @matangbr,
I assume that you have your reasons for using ZeroSSL certificates.
The response from Chrome on connecting to the EIP is expected and correct as the certificate is issued for the domain and not for the IP address. No surprises there.
You might be getting an insecure connection error on the domain because the certificate you imported is invalid or corrupt. I recommend re-importing the certificate on the ALB and it should resolve the issue.
You are not using best practices in configuring security groups. While too many security groups might create performance issues, having just one security group open to all is a very insecure practice. Consider creating a separate security group for SSH and lock it down as much as possible.
Hope this helps.
Why don’t you use an AWS certificate as they are free?
Are you connecting to the ALB as your security group rules allow port 22 with I presume would be for the EC2. That too is bad in its own.
You also mention your connecting via IP. If that’s the EC2 IP then your not using the ALB.
Can you confirm your connecting to the alb and what DNS name?
Relevant content
- Accepted Answerasked a year ago
- Accepted Answerasked 2 years ago
- AWS OFFICIALUpdated 3 months ago
- AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 3 years ago