0

I have requested a certificate via AWS Certificate Manager AWS Certificate Manager

I have an Ubuntu EC2 instance running a Node.Js Server and connected it to the same domain I've requested the certificate for via Route53.

However, when visiting the website, my browser tells me, that its not secure connection.Not secure

So my question is how to correctly apply my certificate to my EC2 Ubuntu instance.

Florian Ludewig
  • 4,338
  • 11
  • 71
  • 137
  • You can't apply these certs to EC2 instances directly. ACM only works with services where the SSL offload infrastructure is controlled/managed by AWS: ELB/ALB (including Elastic Beanstalk), CloudFront, and API Gateway. – Michael - sqlbot Nov 10 '18 at 17:41
  • Please check original question. I have added new answer where you can download private key/cert during startup of EC2. – Imran Nov 11 '18 at 04:41

1 Answers1

2

The documentation states https://aws.amazon.com/certificate-manager/

deploy it on ACM-integrated AWS resources, such as Elastic Load Balancers, Amazon CloudFront distributions, and APIs on API Gateway

So to use the certificate you may need to use one of the services. When having own server, the most appropriate solution is using an ALB (application load balancer) in front of your ec2 instance. There you can select the ssl certificate for the external web access

gusto2
  • 11,210
  • 2
  • 17
  • 36
  • Thanks! I ended up using Load Balancer and it worked – Florian Ludewig Nov 11 '18 at 19:41
  • @Florian Yes, and it will charge you about 20 usd/mo , even if you just have 1 instance and few visitors. ELB are great for enterprise applications, but beware, they can be expensive for smaller projects. – bvdb Apr 05 '19 at 13:55
  • @bvdb indeed, when having a single server, maybe Letsencrypt (or other low cost CA) is good enough – gusto2 Apr 05 '19 at 14:35