[日本語]Amazon CloudFront with AWS Certificate Manager

Bdaf0b291f02fe64a02cdf592a8a0c8f?s=47 AMIMOTO
April 26, 2016
How-to & DIY
2
3.5k

[日本語]Amazon CloudFront with AWS Certificate Manager

CDNでコンテンツの配信を高速化
SSL証明書の管理を自動化

Bdaf0b291f02fe64a02cdf592a8a0c8f?s=128

AMIMOTO

April 26, 2016
Tweet

More Decks by AMIMOTO

See All by AMIMOTO
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
110
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
160
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
140
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
540
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
430
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
1
400
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
160
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
130
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
1
600

Other Decks in How-to & DIY

See All in How-to & DIY
6f36658ea42f570474a8558ba265b795?s=48 exilias
1
1.2k
Dae1d4cc4599a65a5da6e1a1f9d96f05?s=48 n0bisuke
0
270
C16ca934da8c589c2ef48b5030511909?s=48 hrdivision
0
190
0ac7ebcdb073610ef46840fc11af69dd?s=48 kkoiwai
0
670
29f8fa629376e12157eb2a883df11c9b?s=48 _sobataro
0
210
Da8695fc9f71a17e3849ae4cb29df5a0?s=48 travelpayouts
0
660
Dae1d4cc4599a65a5da6e1a1f9d96f05?s=48 n0bisuke
1
160
Fb3f3c151603102a5e60b197a7dfbeb7?s=48 isaikaori
0
150
Ebb0e263c9742d388178b95b286b140f?s=48 haru2036
1
310
Dae1d4cc4599a65a5da6e1a1f9d96f05?s=48 n0bisuke
1
480
9998f03d0ff1d9da73a455f4fc58f4a5?s=48 tmitsuoka0423
0
160
A082b4373c6a647b3394dc555ce443ac?s=48 anoken
0
170

Featured

See All Featured
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
681
180k
0bce06bd06ee7a2c4f5500f25dcf7f18?s=48 paulrobertlloyd
69
1.2k
E76911cbe088e5b850d966de3fc7435b?s=48 robhawkes
51
2.6k
7fa6101cd43067653cf4ac6c7ca54305?s=48 akmur
252
19k
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
775
240k
651dcfe41723207fbb0aa044a4f7c07f?s=48 dotmariusz
93
5k
Ecdea9b9714877b86cee08458f085481?s=48 trallard
6
230
5b9fe87ec1faa67a4599782930f45ec9?s=48 sstephenson
144
11k
Ba530e786553390f3fb271848485681c?s=48 3n
159
22k
D47656e20ff5e42f125fc5ea0fd636c6?s=48 tmm1
61
7.4k
5f2da528927a2ec9ba4fec2069cbc958?s=48 kneath
218
14k
E195ae45320d9202eaa01c9f1d31a416?s=48 marktimemedia
4
64

Transcript

  1. Amazon CloudFront with AWS Certificate Manager @Amimoto_Ami ja.amimoto-ami.com

  2. ΞʔΩςΫνϟ

  3. Amazon CloudFront AWS Certificate Manager w $%/Ͱίϯςϯπͷ഑৴Λߴ଎Խ w 44-ূ໌ॻͷ؅ཧΛࣗಈԽ ࣮ݱ͢Δ͜ͱ

  4. SSLূ໌ॻͷऔಘ Workflow ४උ

  5. ४උ

  6. ɾadministrator@your_domain ɾhostmaster@your_domain ɾpostmaster@your_domain ɾwebmaster@your_domain ɾadmin@your_domain υϝΠϯೝূ༻ϝʔϧΞυϨε

  7. ͢ͰʹυϝΠϯೝূ༻ϝʔϧΞυϨεͰ ϝʔϧͷड৴͕Մೳͳ৔߹͸ɺ ͜ΕҎ߱ͷ߲໨͸εΩοϓ͍ͯͩ͘͠͞ υϝΠϯೝূ༻ϝʔϧΞυϨε

  8. υϝΠϯೝূ༻ϝʔϧΞυϨε͕࢖༻Ͱ ͖ͳ͍৔߹͸ AWS SES Ͱϝʔϧड৴͢ ΔઃఆΛߦ͍·͢ɻ υϝΠϯೝূ༻ϝʔϧΞυϨε

  9. Amazon SES ઃఆ Workflow S3όέοτͷ४උ ߏஙલͷ ४උ

  10. Amazon SES ઃఆ Workflow S3όέοτͷ४උ ߏஙલͷ ४උ

  11. Amazon S3 w "NB[PO4*NQMF4UPSBHF4FSWJDF w Πϯλʔωοτ༻ͷετϨʔδ w 4&4Ͱड৴ͨ͠ϝʔϧΛ֨ೲ͢ΔͨΊʹ࢖༻ "NB[PO4

  12. όέοτϙϦγʔͷઃఆ Workflow S3όέοτͷ࡞੒

  13. όέοτϙϦγʔͷઃఆ Workflow S3όέοτͷ࡞੒

  14. None

  15. Create Bucket ΛΫϦοΫ͠·͢

  16. Bucket Name, Region Λೖྗ͠ Create

  17. όέοτϙϦγʔͷઃఆ Workflow S3όέοτͷ࡞੒

  18. Properties - Permissions - Add bucket policy

  19. Bucket Policy Λઃఆ͠ Save

  20. Bucket Policy https://docs.aws.amazon.com/ses/latest/DeveloperGuide/ receiving-email-permissions.html

  21. Amazon SES ઃఆ Workflow S3όέοτͷ४උ ߏஙલͷ ४උ

  22. Amazon SES w "NB[PO4*NQMF&NBJM4FSWJDF w &NBJMͷૹड৴Λ࣮ߦ͢ΔαʔϏε w $MPVE'SPOUͷೝূϝʔϧड৴ʹ࢖༻ "NB[PO4&4

  23. ϝʔϧड৴ςετ Workflow ϧʔϧηοτͷ࡞੒

  24. None

  25. Email Receiving - Rule Sets - Create a Receipt Rule

  26. Recipient ʹϝʔϧυϝΠϯ໊Λೖྗͯ͠ Add Recipient

  27. දࣔ͞ΕͨઃఆΛ DNS αʔόʹͯઃఆ Route53 Λ࢖༻͍ͯ͠Δ৔߹͸ Use Route53

  28. Route53 Λ࢖༻͍ͯ͠Δ৔߹͸͜ͷը໘͕දࣔ͞ΕΔͷͰ ͢΂ͯνΣοΫͯ͠ Create Record Sets

  29. ࣄલ४උͰ࡞੒ͨ͠ S3 Bucket Λબ୒ͯ͠ Next Step

  30. Rule Name Λೖྗͯ͠ Next Step

  31. ઃఆ಺༰Λ֬ೝͯ͠ Create Rule Set

  32. DNS มߋ͕׬ྃͯ͠ೝূ͕औΕΔͱ Status ͕ Enabled ʹͳΔ

  33. ϝʔϧड৴ςετ Workflow ϧʔϧηοτͷ࡞੒

  34. ϝʔϧΫϥΠΞϯτ͔ΒϝʔϧΛૹ৴ͯ͠ΈΔ

  35. S3όέοτʹʮAMAZON_SES_SETUP_NOTIFICATIONʯҎ֎ ͷϑΝΠϧ͕อଘ͞Ε͍ͯΕ͹ϝʔϧૹ৴͸ਖ਼ৗʹߦΘΕ͍ͯΔ

  36. SSLূ໌ॻͷ औಘ

  37. CloudFront Workflow Certificate Manager

  38. CloudFront Workflow Certificate Manager

  39. AWS Certificate Manager •AWS͕ఏڙ͢ΔSSLূ໌ॻ •CloudFront, ELB Ͱ࢖༻Մೳ •ແྉͰ࢖༻Մೳ •SSLূ໌ॻ͸ࣗಈͰߋ৽͞ΕΔ "84$FSUJpDBUF.BOBHFS

  40. None

  41. Get started

  42. Domain name Λೖྗͯ͠ Review and request

  43. ೖྗ಺༰Λ֬ೝͯ͠ Confirm and request

  44. Continue

  45. ೝূ଴ͪυϝΠϯͷҰཡ͕දࣔ͞ΕΔ

  46. ड৴ϝʔϧΛ֬ೝͯ͠ೝূ༻URLΛϒϥ΢βͰදࣔ

  47. ೝূ༻URLΛදࣔ͠ I Approve ΛΫϦοΫ

  48. Success!

  49. AWSίϯιʔϧͰ΋ೝূ͞Εͨ͜ͱ͕֬ೝͰ͖Δ

  50. CloudFront Workflow Certificate Manager

  51. Amazon CloudFront •AWSͷϗετ͢ΔCDNαʔϏε •αΠτͷߴ଎Խͱෛՙ࡟ݮΛ࣮ݱ •ো֐࣌ͷϑΣΠϧΦʔόʔʹ΋ରԠ "NB[PO$MPVE'SPOU

  52. None

  53. Distributions ͔Βઃఆର৅ͷ distribution Λબ୒

  54. General λϒͷ Edit ΛΫϦοΫ

  55. Custom SSL Certificate Ͱઌ΄Ͳ࡞੒ͨ͠ূ໌ॻΛબ୒

  56. ͠͹Β͘͢ΔͱSSLূ໌ॻ͕ઃఆ͞Ε͍ͯΔ͜ͱ͕֬ೝͰ͖·͢

  57. http://ja.amimoto-ami.com/slack/ ࣭͝໰͸͓ؾܰʹ:

  58. @Amimoto_Ami ja.amimoto-ami.com THANK YOU! Amazon CloudFront + AWS Certificate Manager