Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Amazon CloudFront with AWS Certificate Manager
Search
Amimoto - Flexible Cloud WordPress Hosting
May 02, 2016
How-to & DIY
0
180
Amazon CloudFront with AWS Certificate Manager
# High speed content delivery using CDN.
# Automated SSL certificate management.
Amimoto - Flexible Cloud WordPress Hosting
May 02, 2016
Tweet
Share
More Decks by Amimoto - Flexible Cloud WordPress Hosting
See All by Amimoto - Flexible Cloud WordPress Hosting
[日本語] AMIMOTO-AMI Lineup
amimoto
0
140
EdgeCase - A speaker series by J2 Design
amimoto
0
210
Progress the system operation drastically with Cloud Automator — AMIMOTO side—
amimoto
0
150
[東京]Cloud_Automatorで攻めのシステム運用 AMIMOTO スタック編
amimoto
0
770
AMIMOTO Design Pattern + Server-less Architecture
amimoto
0
470
WooCommerce with Elasticsearch
amimoto
1
430
[日本語] WooCommerce with Elasticsearch
amimoto
0
200
WordPress with CloudFront + AMAZON RDS + S3
amimoto
1
640
[日本語]Amazon CloudFront with AWS Certificate Manager
amimoto
2
4.4k
Other Decks in How-to & DIY
See All in How-to & DIY
Raspberry PiではじめるKiCad入門 / 20240226-rpi-jam
akkiesoft
1
2.8k
AWSのユーザーコミュニティプログラムのご紹介 (JAWS-UG札幌支部編)
awsjcpm
1
420
【潔能講堂】 綠能科技動手做-磁生電燈 / 李薇平老師
learnenergy2
0
180
GPTsとラズパイ5で監視カメラを作ってみた #iotlt #chatgpt #raspberrypi
n0bisuke2
0
120
2023_nekoLT_MZFact
mizmiz1229
1
390
LTのモチベーション
akrolayer
1
270
我が家の自宅サーバー環境2023 / 20230208-myhomeserver
akkiesoft
3
2.1k
やがてカンファレンス登壇者になる
yumechi
1
160
Chaos V-Ray Render Pool (使い方)
renderpool
0
130
「おうちクラウド」が今も熱い!
hirosat
2
850
JAWS-UG東北[秋田] -東北エンジニアの祭典- AWSとJAWS-UG
awsjcpm
0
1.2k
Building the Perfect Custom Keyboard
takai
0
290
Featured
See All Featured
Large-scale JavaScript Application Architecture
addyosmani
501
110k
The MySQL Ecosystem @ GitHub 2015
samlambert
242
12k
No one is an island. Learnings from fostering a developers community.
thoeni
14
2k
The Language of Interfaces
destraynor
150
22k
JazzCon 2018 Closing Keynote - Leadership for the Reluctant Leader
reverentgeek
178
11k
Rebuilding a faster, lazier Slack
samanthasiow
72
8.1k
The Power of CSS Pseudo Elements
geoffreycrofte
58
4.9k
Designing on Purpose - Digital PM Summit 2013
jponch
109
6.4k
Practical Orchestrator
shlominoach
180
9.6k
Building an army of robots
kneath
300
41k
WebSockets: Embracing the real-time Web
robhawkes
59
6.9k
Producing Creativity
orderedlist
PRO
335
39k
Transcript
Amazon CloudFront with AWS Certificate Manager @Amimoto_Ami amimoto-ami.com
Architecture
Amazon CloudFront AWS Certificate Manager w )JHITQFFEDPOUFOUEFMJWFSZ VTJOH$%/ w "VUPNBUFE44-DFSUJpDBUF
NBOBHFNFOU $BOCFNBEF
Get SSL certification Workflow Preparations
Preparation
ɾadministrator@your_domain ɾhostmaster@your_domain ɾpostmaster@your_domain ɾwebmaster@your_domain ɾadmin@your_domain 7BMJEBUJPOFNBJMBEESFTT
If you have validation e-mail address and receive mails to
it, no setting are required any more. 7BMJEBUJPOFNBJMBEESFTT
If you have no validation e-mail address, follow these steps
to receive mails through AWS SES. 7BMJEBUJPOFNBJMBEESFTT
Set up Amazon SES Workflow Create S3 bucket Preparation
Set up Amazon SES Workflow Create S3 bucket Preparation
Amazon S3 w "NB[PO4JNQMF4UPSBHF4FSWJDF w &BTZUPVTFPCKFDUTUPSBHFTFSWJDF w 8F`MMVTFJUGPSTUPSFNFTTBHFT4&4 "NB[PO4
Add bucket policy Workflow Create S3 bucket
Add bucket policy Workflow Create S3 bucket
None
Click [Create Bucket]
Input Bucket Name and Region then click [Create]
Add bucket policy Workflow Create S3 bucket
Click [Add bucket policy] in Permissions section in Properties
Edit Bucket Policy then [Save]
Bucket Policy https://docs.aws.amazon.com/ses/latest/DeveloperGuide/ receiving-email-permissions.html
Set up Amazon SES Workflow Create S3 bucket Preparation
Amazon SES w "NB[PO4JNQMF&NBJM4FSWJDF w 4FOESFDFJWFFNBJMTFSWJDF w 8F`MMVTFJUGPS$MPVE'SPOU FNBJMWFSJpDBUJPO "NB[PO4&4
Testing e-mail Workflow Create a Receipt Rule
None
Email Receiving — [Rule Sets] — [Create a Receipt Rule]
Click [Add Recipient] after fill in e-mail address to Recipient
Set displayed records to your DNS server. If your DNS
is Route53, simply click [Use Route 53].
After clicking [Use Route 53], some checkbox will appear. Check
them all then [Create Record Sets]. (only for Route 53 user)
Select created S3 bucket click [Next]
Fill in the [Rule name] then click [Next Step]
Setting confirmation. After confirmation, click [Create Rule Set]
Status turns to Enabled when you completed DNS configuration and
its verification.
Testing e-mail Workflow Create a Receipt Rule
Send test mail to created e-mail address from your favourite
mail client software.
If you find a file except AMAZON_SES_SETUP_NOTIFICATION file in S3
bucket, settings are working correct.
Get SSL certification
CloudFront Workflow Certificate Manager
CloudFront Workflow Certificate Manager
AWS Certificate Manager • SSL certification provided by AWS •
Available for CloudFront and ELB • No additional fee • Automatically renewal "84$FSUJpDBUF.BOBHFS
None
Click [Get started]
Input your domain name to [Domain name] field then click
[Review and request]
After confirmation, click [Confirm and request]
Click [Continue]
You’ll see list of certificate status of domains
Open the verification URL with your browser in the mail
in S3 bucket
Open verification URL with your browser, then click [I
Approve]
Success! Congratulations! You finally get SSL certification
Also you can check certificate request status on AWS console.
CloudFront Workflow Certificate Manager
Amazon CloudFront • AWS managed CDN service • Low latency
and reduce server loads • Supports failover if a failure "NB[PO$MPVE'SPOU
None
Choose the distribution you wants to add SSL in Distributions
Click [Edit] in General tab
Select created SSL certification in Custom SSL Certificate
You can see that SSL certificate is set to your
domain. It takes a little while.
http://amimoto-ami.com/slack/ Feel free to contact us:
@Amimoto_Ami amimoto-ami.com THANK YOU! Amazon CloudFront + AWS Certificate Manager