[日本語]Amazon CloudFront with AWS Certificate Manager

Bdaf0b291f02fe64a02cdf592a8a0c8f?s=47 AMIMOTO
April 26, 2016
How-to & DIY
2
3.6k

[日本語]Amazon CloudFront with AWS Certificate Manager

CDNでコンテンツの配信を高速化
SSL証明書の管理を自動化

Bdaf0b291f02fe64a02cdf592a8a0c8f?s=128

AMIMOTO

April 26, 2016
Tweet

More Decks by AMIMOTO

See All by AMIMOTO
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
110
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
170
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
140
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
560
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
440
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
1
400
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
160
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
130
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
1
600

Other Decks in How-to & DIY

See All in How-to & DIY
3f15771e2e10ad9fc933e64a3bff76ac?s=48 portals
1
240
69b4dadef85efe143ac825b62d36ed7c?s=48 fruitriin
0
360
9260cf8a1a6dd81ac381c56547f589d5?s=48 bigtree
0
740
73a5f95133889e0846ae38321686368b?s=48 matsuoshi
0
290
Ab0b231dec7b4b6f5afcdb4d2ce5feb3?s=48 keikeisuke
0
530
A082b4373c6a647b3394dc555ce443ac?s=48 anoken
0
210
177e036a203d760bbbd69297442d66ec?s=48 shao1555
0
180
05b48de035af15c85515c4900571c3a0?s=48 tsunasapo
0
110
A4279da93d5e574c797061134aa42dbb?s=48 wyamazak
0
330
4cf2af3ad1e7c2b750d7abf651f1ed34?s=48 fujitasaki
0
350
Ac6dba8ce93944d17714de362ca17e54?s=48 muryoimpl
0
2k
20b50e2c6de6182f76de48a7cdeb051f?s=48 yukuro
0
120

Featured

See All Featured
C1daf20e5c49ff910745198ef9869ac2?s=48 hatefulcrawdad
257
16k
3d4519fd34b76fb265fc0237f3792bd4?s=48 danielanewman
1
340
96270e4c3e5e9806cf7245475c00b275?s=48 addyosmani
1348
190k
E190023b66e2b8aa73a842b106920c93?s=48 zenorocha
296
39k
C9b18d9dff88a9dd2393364c2b3b21bd?s=48 colly
65
2.9k
A0517b08532aec8ab2aae3f65d40ad86?s=48 hannesfritz
27
890
Be9caeb9d4ef9944d151af909063ed6e?s=48 samlambert
236
9.8k
3d4519fd34b76fb265fc0237f3792bd4?s=48 danielanewman
197
19k
C0b42577cfc2b321be3474618107e933?s=48 samanthasiow
54
6k
9cde37f47e4a800ea081ea42de8d749a?s=48 dougneiner
55
5.3k
3d6ace9554821d552146413bcdf874f6?s=48 trishagee
14
970
E195ae45320d9202eaa01c9f1d31a416?s=48 marktimemedia
5
190

Transcript

  1. Amazon CloudFront with AWS Certificate Manager @Amimoto_Ami ja.amimoto-ami.com

  2. ΞʔΩςΫνϟ

  3. Amazon CloudFront AWS Certificate Manager w $%/Ͱίϯςϯπͷ഑৴Λߴ଎Խ w 44-ূ໌ॻͷ؅ཧΛࣗಈԽ ࣮ݱ͢Δ͜ͱ

  4. SSLূ໌ॻͷऔಘ Workflow ४උ

  5. ४උ

  6. ɾadministrator@your_domain ɾhostmaster@your_domain ɾpostmaster@your_domain ɾwebmaster@your_domain ɾadmin@your_domain υϝΠϯೝূ༻ϝʔϧΞυϨε

  7. ͢ͰʹυϝΠϯೝূ༻ϝʔϧΞυϨεͰ ϝʔϧͷड৴͕Մೳͳ৔߹͸ɺ ͜ΕҎ߱ͷ߲໨͸εΩοϓ͍ͯͩ͘͠͞ υϝΠϯೝূ༻ϝʔϧΞυϨε

  8. υϝΠϯೝূ༻ϝʔϧΞυϨε͕࢖༻Ͱ ͖ͳ͍৔߹͸ AWS SES Ͱϝʔϧड৴͢ ΔઃఆΛߦ͍·͢ɻ υϝΠϯೝূ༻ϝʔϧΞυϨε

  9. Amazon SES ઃఆ Workflow S3όέοτͷ४උ ߏஙલͷ ४උ

  10. Amazon SES ઃఆ Workflow S3όέοτͷ४උ ߏஙલͷ ४උ

  11. Amazon S3 w "NB[PO4*NQMF4UPSBHF4FSWJDF w Πϯλʔωοτ༻ͷετϨʔδ w 4&4Ͱड৴ͨ͠ϝʔϧΛ֨ೲ͢ΔͨΊʹ࢖༻ "NB[PO4

  12. όέοτϙϦγʔͷઃఆ Workflow S3όέοτͷ࡞੒

  13. όέοτϙϦγʔͷઃఆ Workflow S3όέοτͷ࡞੒

  14. None

  15. Create Bucket ΛΫϦοΫ͠·͢

  16. Bucket Name, Region Λೖྗ͠ Create

  17. όέοτϙϦγʔͷઃఆ Workflow S3όέοτͷ࡞੒

  18. Properties - Permissions - Add bucket policy

  19. Bucket Policy Λઃఆ͠ Save

  20. Bucket Policy https://docs.aws.amazon.com/ses/latest/DeveloperGuide/ receiving-email-permissions.html

  21. Amazon SES ઃఆ Workflow S3όέοτͷ४උ ߏஙલͷ ४උ

  22. Amazon SES w "NB[PO4*NQMF&NBJM4FSWJDF w &NBJMͷૹड৴Λ࣮ߦ͢ΔαʔϏε w $MPVE'SPOUͷೝূϝʔϧड৴ʹ࢖༻ "NB[PO4&4

  23. ϝʔϧड৴ςετ Workflow ϧʔϧηοτͷ࡞੒

  24. None

  25. Email Receiving - Rule Sets - Create a Receipt Rule

  26. Recipient ʹϝʔϧυϝΠϯ໊Λೖྗͯ͠ Add Recipient

  27. දࣔ͞ΕͨઃఆΛ DNS αʔόʹͯઃఆ Route53 Λ࢖༻͍ͯ͠Δ৔߹͸ Use Route53

  28. Route53 Λ࢖༻͍ͯ͠Δ৔߹͸͜ͷը໘͕දࣔ͞ΕΔͷͰ ͢΂ͯνΣοΫͯ͠ Create Record Sets

  29. ࣄલ४උͰ࡞੒ͨ͠ S3 Bucket Λબ୒ͯ͠ Next Step

  30. Rule Name Λೖྗͯ͠ Next Step

  31. ઃఆ಺༰Λ֬ೝͯ͠ Create Rule Set

  32. DNS มߋ͕׬ྃͯ͠ೝূ͕औΕΔͱ Status ͕ Enabled ʹͳΔ

  33. ϝʔϧड৴ςετ Workflow ϧʔϧηοτͷ࡞੒

  34. ϝʔϧΫϥΠΞϯτ͔ΒϝʔϧΛૹ৴ͯ͠ΈΔ

  35. S3όέοτʹʮAMAZON_SES_SETUP_NOTIFICATIONʯҎ֎ ͷϑΝΠϧ͕อଘ͞Ε͍ͯΕ͹ϝʔϧૹ৴͸ਖ਼ৗʹߦΘΕ͍ͯΔ

  36. SSLূ໌ॻͷ औಘ

  37. CloudFront Workflow Certificate Manager

  38. CloudFront Workflow Certificate Manager

  39. AWS Certificate Manager •AWS͕ఏڙ͢ΔSSLূ໌ॻ •CloudFront, ELB Ͱ࢖༻Մೳ •ແྉͰ࢖༻Մೳ •SSLূ໌ॻ͸ࣗಈͰߋ৽͞ΕΔ "84$FSUJpDBUF.BOBHFS

  40. None

  41. Get started

  42. Domain name Λೖྗͯ͠ Review and request

  43. ೖྗ಺༰Λ֬ೝͯ͠ Confirm and request

  44. Continue

  45. ೝূ଴ͪυϝΠϯͷҰཡ͕දࣔ͞ΕΔ

  46. ड৴ϝʔϧΛ֬ೝͯ͠ೝূ༻URLΛϒϥ΢βͰදࣔ

  47. ೝূ༻URLΛදࣔ͠ I Approve ΛΫϦοΫ

  48. Success!

  49. AWSίϯιʔϧͰ΋ೝূ͞Εͨ͜ͱ͕֬ೝͰ͖Δ

  50. CloudFront Workflow Certificate Manager

  51. Amazon CloudFront •AWSͷϗετ͢ΔCDNαʔϏε •αΠτͷߴ଎Խͱෛՙ࡟ݮΛ࣮ݱ •ো֐࣌ͷϑΣΠϧΦʔόʔʹ΋ରԠ "NB[PO$MPVE'SPOU

  52. None

  53. Distributions ͔Βઃఆର৅ͷ distribution Λબ୒

  54. General λϒͷ Edit ΛΫϦοΫ

  55. Custom SSL Certificate Ͱઌ΄Ͳ࡞੒ͨ͠ূ໌ॻΛબ୒

  56. ͠͹Β͘͢ΔͱSSLূ໌ॻ͕ઃఆ͞Ε͍ͯΔ͜ͱ͕֬ೝͰ͖·͢

  57. http://ja.amimoto-ami.com/slack/ ࣭͝໰͸͓ؾܰʹ:

  58. @Amimoto_Ami ja.amimoto-ami.com THANK YOU! Amazon CloudFront + AWS Certificate Manager