适用于AWS内部负载均衡器的SSL证书
[英]SSL certificate for AWS internal load balancer
问题描述
We have an internal facing application load balancer in AWS VPC. 
AWS VPC中有一个面向内部的应用程序负载平衡器。 This is being accessed by a web app running in a public subnet. 正在公共子网中运行的Web应用程序正在访问此目录。 The web app is behind a custom domain url and it uses SSL certificate for security.Since, the API load balancer is not applied with SSL, communication from web app to API LB is failing. 该Web应用程序位于自定义域URL后面,并且使用SSL证书进行安全保护。由于API负载均衡器未与SSL一起应用,因此从Web应用程序到API LB的通信失败。
Is it possible to get a SSL certificate for an internal facing load balancer in AWS? 是否可以为AWS中面向内部的负载均衡器获取SSL证书?
1 个解决方案
解决方案1
1 2018-12-19 11:17:00
Yes this is entirely possible using the AWS ACM service, there are two options, you can use Amazon's public service to generate certs but I assume that is not what you want to do here. 是的,使用AWS ACM服务完全可以做到这一点,有两种选择,您可以使用Amazon的公共服务来生成证书,但是我想这不是您想要在此处做的。 So you can alternatively create a Private CA through this service and distribute your certificates from there which can then be placed on Loadbalancers etc. You will most likely want to look at these pages: 因此,您也可以通过此服务创建私有CA,然后从那里分发证书,然后将其放在Loadbalancers等上。您很可能希望查看以下页面:
https://docs.aws.amazon.com/acm/latest/userguide/acm-overview.html https://aws.amazon.com/certificate-manager/ https://docs.aws.amazon.com/acm/latest/userguide/acm-overview.html https://aws.amazon.com/certificate-manager/
Have a read first before diving right in but it's a pretty nifty feature for this sort of thing, once the CA is setup then creating certs is so fast and instantly attachable to resources. 在深入研究之前,请先阅读一遍,但这对于这种事情来说是一个非常漂亮的功能,一旦设置了CA,然后创建证书就非常迅速,并且可以立即附加到资源上。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.