AWS 颁发的 SSL 证书存储在服务器上的什么位置,以便我可以将 Neo4J 定向到它们?
[英]Where are the SSL certificates issued by AWS are stored on the server so I can direct Neo4J to them?
问题描述
I issued an SSL certificate via AWS Certificate Manager.
我通过 AWS Certificate Manager 颁发了 SSL 证书。 Now I need to point my Neo4J database to that certificate (this is by inner design of this graph database, which accesses the server via bolt).现在我需要将 Neo4J 数据库指向该证书(这是通过这个图形数据库的内部设计,它通过 Bolt 访问服务器)。
Before, when I issued them using Let's Encrypt, I'd simply locate them on the server's harddrive and direct Neo4J to them as described in this article by Neo4j: https://medium.com/neo4j/getting-certificates-for-neo4j-with-letsencrypt-a8d05c415bbd之前,当我使用 Let's Encrypt 发布它们时,我只需将它们定位在服务器的硬盘驱动器上,然后按照 Neo4j 的这篇文章中的描述将 Neo4J 定向到它们: https ://medium.com/neo4j/getting-certificates-for-neo4j -with-letsencrypt-a8d05c415bbd
However, if I prefer to have a certificate issued by AWS, how do I locate them on my EC2 instance?但是,如果我更喜欢 AWS 颁发的证书,我该如何在我的 EC2 实例上找到它们? Where are they located, so I direct Neo4J to them?它们位于何处,所以我将 Neo4J 定向到它们? Or are they not on the server at all?或者它们根本不在服务器上? In this case, is there any way to fix this problem?在这种情况下,有没有办法解决这个问题?
1 个解决方案
解决方案1
1 2020-10-04 17:09:39
You cannot use certs provisioned by AWS ACM on the server because ACM manages the private key.您不能在服务器上使用 AWS ACM 提供的证书,因为 ACM 管理私有密钥。 You can either terminate SSL on the load balancer, or get one from a provider on your server.您可以在负载均衡器上终止 SSL,也可以从服务器上的提供商处获取 SSL。 You can have a secure connection w/ SSL terminating on the ELB.您可以在 ELB 上建立带有 SSL 终止的安全连接。 I'm not sure about how to use it with Neo4j.我不确定如何将它与 Neo4j 一起使用。
Terminating SSL on ALB在 ALB 上终止 SSL
https://infra.engineer/aws/36-aws-ssl-offloading-with-an-application-load-balancer https://infra.engineer/aws/36-aws-ssl-offloading-with-an-application-load-balancer
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.