Front-end Tutorials

Front-end Tutorials

HTMLCSSSassJavaScriptReactJS
Server-Side Tutorials

Server-Side Tutorials

CC++C#JavaPHPPythonNode.jsExpress
CMS Tutorials

CMS Tutorials

WordPress
Tutorials expand

Amazon Certificate Manager

Posted in AWS Tutorial
Updated on Dec 30, 2023
By Mari Selvan
👁️ 25 - Views
⏳ 4 mins
💬 1 Comment
Amazon Certificate Manager

Photo Credit to CodeToFun

🙋 Introduction

Amazon Certificate Manager (ACM) is a service provided by AWS that makes it easy to provision, manage, and deploy SSL/TLS certificates for your applications.

In this tutorial, we'll explore how to use ACM to secure the communication between your Application Load Balancer (ALB) and your users by deploying an SSL/TLS certificate.

📚 Prerequisites

Before you begin, make sure you have the following:

  • An AWS account with access to ACM and an ALB.
  • An ALB set up and running with your application.

📜 Requesting a Certificate in ACM

Follow these steps to request an HTTPS certificate for your domain

  1. Open the AWS Management Console.

  2. Navigate to the Certificate Manager service.

    Navigate to ACM

    Photo Credit to CodeToFun

  3. Click on the Request a certificate button.

    ACM Request a certificate

    Photo Credit to CodeToFun

  4. Click on Request a public certificate.

  5. Configure the ACM Domain Names and Validation Methods.

    ACM Configure domain name and validation methods

    Photo Credit to CodeToFun

  6. Configure the ACM Key algorithm by choosing RSA 2048, and then click on the Request button.

    ACM configure key algorithm

    Photo Credit to CodeToFun

  7. From the Certificates section, click on the specific Certificate ID.

    ACM Certificates

    Photo Credit to CodeToFun

  8. Open the Hosted Zone, select the specific domain (quizarmy.com), and then click on the Create Record button.

  9. To validate the ACM certificate for your subdomain (www.quizarmy.com), you should copy the CNAME name and CNAME value from ACM, then create a CNAME record as depicted in the image.

    Caution: When specifying the CNAME name, make sure to exclude .domain-name.com from it.

    ACM CNAME value for subdomain

    Photo Credit to CodeToFun

  10. To validate the ACM certificate for your domain (quizarmy.com), you should copy the CNAME name and CNAME value from ACM, then create a CNAME record as depicted in the image.

    Caution: When specifying the CNAME name, make sure to exclude .domain-name.com from it.

    ACM CNAME value for domain

    Photo Credit to CodeToFun

  11. Now, the hosted zone for the specified domain (quizarmy.com) should appear as depicted in the image below.

    ACM CNAME created successfully

    Photo Credit to CodeToFun

  12. After 5 minutes, check your ACM certificate; the status of our domains should reflect success, as depicted in the image below

    ACM DNS configured successfully

    Photo Credit to CodeToFun

  13. Navigate to your Application Load Balancer, select the load balancer for which you want to establish a secure connection (HTTPS). Then, access the Listeners and Rules tab and click the Add Listener button.

    Configure Load Balancer for HTTPs

    Photo Credit to CodeToFun

  14. Configure Application load balancers Listener Configuration as follows:

    1. Protocol: HTTPS.
    2. Port: 443.
    3. Routing actions: Forward to target groups.
    4. Target group: Select your specific target group.
    Configure Application Load Balancer HTTPs Listener

    Photo Credit to CodeToFun

  15. Configure Application load balancers Secure listener settings as follows:

    1. Certificate source: From ACM.
    2. Certificate (from ACM): Choose the certificate that we obtained earlier.
    Configure Load Balancer from HTTPs secure listener

    Photo Credit to CodeToFun

  16. Click on the Add button.

    Congratulations! We have successfully added the listener.

🕵️‍♂️ Testing Your Secure Connection

Test your secure connection by following these steps.

  1. Open your web browser.
  2. Navigate to your application using the secure URL (e.g., https://www.example.com).

  3. Verify that the connection is secure, and the SSL/TLS certificate is valid.

    I will verify the domain name quizarmy.com, as it belongs to me.

    ACM certificate working successfully

    Photo Credit to CodeToFun

🔄 Certificate Renewal and Management

ACM takes care of the renewal process for you. Certificates provided by ACM are automatically renewed and managed, ensuring a secure and hassle-free experience.

  1. Return to the ACM console.
  2. Explore the options for managing and monitoring your certificates.
  3. Set up notifications for certificate expirations or other relevant events.

🎉 Conclusion

Congratulations! You've successfully explored Amazon Certificate Manager and secured the communication between your users and your Application Load Balancer using SSL/TLS certificates.

ACM simplifies the process of obtaining and managing certificates, allowing you to focus on building secure and reliable applications.

Remember to regularly monitor your certificates and update them as needed. Additionally, consider using ACM in conjunction with other AWS services for a comprehensive security strategy.

👨‍💻 Join our Community:

To get interesting news and instant updates on Front-End, Back-End, CMS and other Frameworks. Please Join the Telegram Channel:

Author

author
👋 Hey, I'm Mari Selvan

For over eight years, I worked as a full-stack web developer. Now, I have chosen my profession as a full-time blogger at codetofun.com.

Buy me a coffee to make codetofun.com free for everyone.

Buy me a Coffee

Share Your Findings to All

Subscribe
Notify of
guest
1 Comment
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
Mari Selvan
Mari Selvan
3 months ago

If you have any doubts regarding this article (Amazon Certificate Manager), please comment here. I will help you immediately.

0
We make use of cookies to improve our user experience. By using this website, you agree with our Cookies Policy
AgreeCookie Policy