Logo

dev-resources.site

for different kinds of informations.

Apply SSL Certificate on AWS ACM (also Cloudflare)

Published at
12/25/2024
Categories
aws
acm
apigateway
cloudfront
Author
cheedge_lee
Categories
4 categories in total
aws
open
acm
open
apigateway
open
cloudfront
open
Author
11 person written this
cheedge_lee
open
Apply SSL Certificate on AWS ACM (also Cloudflare)

During migrating one local host website to AWS, there are many point I need to write donw. Each article will be a short note, just keep as simple as possible to record the working steps, which makes it later can be quickly found, and also with a simple description. Therefore this serie will not be a detailed explain articles.

apply for certificate

Best to use AWS Certificate Manager (ACM).

  1. Before all add a CAA type record.
    • add CAA record
    • Name is your donmain name, and CA domain name fill in one of :
      • amazon.com
      • amazontrust.com
      • awstrust.com
      • amazonaws.com
    • if no this CAA, will failed.
  2. Nevigate to certificate page
  3. click Request
  4. fill in the domain/subdomain name
    • if has special charactors like my "einbรผrgerungstest.leeindeutschland.de", don't need to use punycode.
  5. use DNS validation, then create.
    • as I don't register the domain Email
  6. it will gives you, CNAME name and CNAME value
  7. Go to your Domain dashboard(where you register your domain, eg. Cloudflare). Create a CNAME record with Name as the CNAME name, Target as the CNAME value
    • you can remove your domain name in Name field, it's doesn't matter if you removed the tailing point.
  8. then after some time, it will be issued.
    • DON'T wait for too long, 72h is the expired time, if still pending, there must be some thing wrong, don't waste time on waiting. ### CloudFront MUST apply the cert in us-east-1 region ### API Gateway Apply cert where your API Gateway hold. ## about other cert Because I missed the CAA record, I have turn on Cloudflare cert, but, but NOTICE, Cloudflare cert is not recognised by AWS, so don't waste time if you want to deploy on AWS.

However, there are also some point I need to write down.

  1. Go to SSL/TLS -> Overview -> Config -> choose the Full (Strict Mode)
  2. Then go to SSL/TLS -> Origin Server, create.
    • Notice: the Private Key only show this once, so better to keep it at this time.
  3. Next go to AWS ACM, this time not click the Request, instead, click the import button
  4. paste the cert and private key to corresponding field, done.
  5. But embarasing, this will not work on AWS,(for CloudFront, but for EC2 I see some post, it seems still work).

Reference

AWS Certificate Manager DNS validation

Troubleshoot DNS validation problems

Certification Authority Authorization (CAA) problems

apigateway Article's
30 articles in total
Favicon
Invoking Private API Gateway Endpoints From Step Functions
Favicon
The Power of AWS API Gateway and AWS AppSync: Transforming API Development, Functionality, and Use Cases
Favicon
Generate an OpenAPI From Your Database
Favicon
API Gateway Hosting Options
Favicon
Calling IAM authenticated API Gateway with different HTTP clients
Favicon
Kong API Gateway Setup Basic to advance usages
Favicon
Building a Friends-Themed Chatbot: Exploring Amazon Bedrock for Dialogue Refinement
Favicon
How to return meaningful error messages with Zod, Lambda and API Gateway in AWS CDK
Favicon
Gcp api gateway
Favicon
Accelerating Developer Productivity with Federated Gateways
Favicon
Introducing Dedicated Managed and Fully Self-Hosted Zuplo
Favicon
The API Gateway Powering the AI Revolution
Favicon
Java api gateway cord
Favicon
Why a Hosted API Gateway Is Better Than Building Your Own
Favicon
Setting Up Custom Domain for API Gateway & CloudFront
Favicon
Apply SSL Certificate on AWS ACM (also Cloudflare)
Favicon
how to do api getway contex in aws lambdas ?
Favicon
Top 140+ Unique And Free APIs for Developers to Supercharge Development in 2025 [Must Read]
Favicon
Simplify Your Microservices Architecture: Discover OpenFeign
Favicon
Unlocking the Potential of Spring Cloud Gateway for Scalable Microservices
Favicon
Reverse Proxy vs Load Balancer vs API Gateway: Key Differences
Favicon
Recent Web Vulnerabilities and How LLMs and DCS Can Help Combat Them!
Favicon
API Gateway integration with AWS Services.
Favicon
Avoiding API Gatewayโ€™s integrations hard limit: scaling serverless architectures efficiently
Favicon
โœ…ASP.NET Core API Gateway with Ocelot Part 4 (Rate Limiting)
Favicon
Fine-Tune Your Serverless REST APIs with AWS Lambda Power Tuning
Favicon
System Design 04 - API Gateway: Your Systemโ€™s VIP Entrance
Favicon
Step-by-Step Guide to Integrating Third-Party APIs in Laravel Applications
Favicon
๐Ÿš€ ๐๐จ๐จ๐ฌ๐ญ ๐˜๐จ๐ฎ๐ซ ๐€๐๐ˆ ๐’๐ค๐ข๐ฅ๐ฅ๐ฌ ๐ฐ๐ข๐ญ๐ก ๐Œ๐ฒ ๐Ž๐œ๐ž๐ฅ๐จ๐ญ ๐†๐š๐ญ๐ž๐ฐ๐š๐ฒ ๐„๐ฌ๐ฌ๐ž๐ง๐ญ๐ข๐š๐ฅ๐ฌ!
Favicon
Role of API Gateways in Microservices Architecture

Featured ones: