Upgrade to Pro — share decks privately, control downloads, hide ads and more …

[日本語]Amazon CloudFront with AWS Certificate Manager

Bdaf0b291f02fe64a02cdf592a8a0c8f?s=47 AMIMOTO
April 26, 2016
How-to & DIY
2
3.8k

[日本語]Amazon CloudFront with AWS Certificate Manager

CDNでコンテンツの配信を高速化
SSL証明書の管理を自動化

Bdaf0b291f02fe64a02cdf592a8a0c8f?s=128

AMIMOTO

April 26, 2016
Tweet

More Decks by AMIMOTO

See All by AMIMOTO
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
110
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
180
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
140
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
600
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
440
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
1
400
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
160
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
0
140
Bdaf0b291f02fe64a02cdf592a8a0c8f?s=48 amimoto
1
610

Other Decks in How-to & DIY

See All in How-to & DIY
4c28b15186b6a5768b79fa63598ca019?s=48 takurx
1
130
Ed9a918cb87a16e8fc574627224d5133?s=48 marilynkol
0
110
61e8d2d797a37913aafaeb8e8b38c373?s=48 echizenyayota
0
150
59815f4389b285c6d17343544f4d27f8?s=48 clairedelune
0
120
03089d9ce3bc29cb15ccb3dc5017b900?s=48 ksasao
0
260
A687ebb551b8ed563b07a41076180e7e?s=48 nekomatu
1
180
C995681c00e2d2f81fbff0a635e0b5e0?s=48 mamisada
1
340
0b666fd93192da360be3afb839f09da5?s=48 achamixx
3
1.1k
Dae1d4cc4599a65a5da6e1a1f9d96f05?s=48 n0bisuke
0
360
0506831985f466c9638304a11d23fa9c?s=48 shimizunobutaka
1
750
99302b39c43015983665d69397695734?s=48 gaines
3
170
1e772c3f6eee3813e4058e17fa7ca540?s=48 pintobuns
0
150

Featured

See All Featured
5f2da528927a2ec9ba4fec2069cbc958?s=48 kneath
220
15k
D36d2c1821af9249b69ff7f5ed60529b?s=48 tammielis
238
23k
C0390e8b11079f8761c0cd3274ed61cb?s=48 productmarketing
7
860
A60068bce2e73de3a37ca9d2dbe36092?s=48 bryan
32
3.5k
F383c6a4dc55e331bbe2987b622cee6b?s=48 stephaniewalter
262
11k
9375a9529679f1b42b567a640d775e7d?s=48 schacon
147
6.7k
1f74b13f1e5c6c69cb5d7fbaabb1e2cb?s=48 sferik
612
55k
168ccec72eee0530b818d44f3fedaacf?s=48 shlominoach
176
7.7k
E43f8dfd01057f8304f5f8fb9a294d7d?s=48 jeffersonlam
330
16k
7559f6cff1f5efc2d210965febd4d71c?s=48 bermonpainter
344
26k
9fa239b3154a0169d99ab7bf1422dd12?s=48 marcelosomers
221
15k
48c098b6579220a67a6ba949be6e4b5a?s=48 revolveconf
201
9.8k

Transcript

  1. Amazon CloudFront with AWS Certificate Manager @Amimoto_Ami ja.amimoto-ami.com

  2. ΞʔΩςΫνϟ

  3. Amazon CloudFront AWS Certificate Manager w $%/Ͱίϯςϯπͷ഑৴Λߴ଎Խ w 44-ূ໌ॻͷ؅ཧΛࣗಈԽ ࣮ݱ͢Δ͜ͱ

  4. SSLূ໌ॻͷऔಘ Workflow ४උ

  5. ४උ

  6. ɾadministrator@your_domain ɾhostmaster@your_domain ɾpostmaster@your_domain ɾwebmaster@your_domain ɾadmin@your_domain υϝΠϯೝূ༻ϝʔϧΞυϨε

  7. ͢ͰʹυϝΠϯೝূ༻ϝʔϧΞυϨεͰ ϝʔϧͷड৴͕Մೳͳ৔߹͸ɺ ͜ΕҎ߱ͷ߲໨͸εΩοϓ͍ͯͩ͘͠͞ υϝΠϯೝূ༻ϝʔϧΞυϨε

  8. υϝΠϯೝূ༻ϝʔϧΞυϨε͕࢖༻Ͱ ͖ͳ͍৔߹͸ AWS SES Ͱϝʔϧड৴͢ ΔઃఆΛߦ͍·͢ɻ υϝΠϯೝূ༻ϝʔϧΞυϨε

  9. Amazon SES ઃఆ Workflow S3όέοτͷ४උ ߏஙલͷ ४උ

  10. Amazon SES ઃఆ Workflow S3όέοτͷ४උ ߏஙલͷ ४උ

  11. Amazon S3 w "NB[PO4*NQMF4UPSBHF4FSWJDF w Πϯλʔωοτ༻ͷετϨʔδ w 4&4Ͱड৴ͨ͠ϝʔϧΛ֨ೲ͢ΔͨΊʹ࢖༻ "NB[PO4

  12. όέοτϙϦγʔͷઃఆ Workflow S3όέοτͷ࡞੒

  13. όέοτϙϦγʔͷઃఆ Workflow S3όέοτͷ࡞੒

  14. None

  15. Create Bucket ΛΫϦοΫ͠·͢

  16. Bucket Name, Region Λೖྗ͠ Create

  17. όέοτϙϦγʔͷઃఆ Workflow S3όέοτͷ࡞੒

  18. Properties - Permissions - Add bucket policy

  19. Bucket Policy Λઃఆ͠ Save

  20. Bucket Policy https://docs.aws.amazon.com/ses/latest/DeveloperGuide/ receiving-email-permissions.html

  21. Amazon SES ઃఆ Workflow S3όέοτͷ४උ ߏஙલͷ ४උ

  22. Amazon SES w "NB[PO4*NQMF&NBJM4FSWJDF w &NBJMͷૹड৴Λ࣮ߦ͢ΔαʔϏε w $MPVE'SPOUͷೝূϝʔϧड৴ʹ࢖༻ "NB[PO4&4

  23. ϝʔϧड৴ςετ Workflow ϧʔϧηοτͷ࡞੒

  24. None

  25. Email Receiving - Rule Sets - Create a Receipt Rule

  26. Recipient ʹϝʔϧυϝΠϯ໊Λೖྗͯ͠ Add Recipient

  27. දࣔ͞ΕͨઃఆΛ DNS αʔόʹͯઃఆ Route53 Λ࢖༻͍ͯ͠Δ৔߹͸ Use Route53

  28. Route53 Λ࢖༻͍ͯ͠Δ৔߹͸͜ͷը໘͕දࣔ͞ΕΔͷͰ ͢΂ͯνΣοΫͯ͠ Create Record Sets

  29. ࣄલ४උͰ࡞੒ͨ͠ S3 Bucket Λબ୒ͯ͠ Next Step

  30. Rule Name Λೖྗͯ͠ Next Step

  31. ઃఆ಺༰Λ֬ೝͯ͠ Create Rule Set

  32. DNS มߋ͕׬ྃͯ͠ೝূ͕औΕΔͱ Status ͕ Enabled ʹͳΔ

  33. ϝʔϧड৴ςετ Workflow ϧʔϧηοτͷ࡞੒

  34. ϝʔϧΫϥΠΞϯτ͔ΒϝʔϧΛૹ৴ͯ͠ΈΔ

  35. S3όέοτʹʮAMAZON_SES_SETUP_NOTIFICATIONʯҎ֎ ͷϑΝΠϧ͕อଘ͞Ε͍ͯΕ͹ϝʔϧૹ৴͸ਖ਼ৗʹߦΘΕ͍ͯΔ

  36. SSLূ໌ॻͷ औಘ

  37. CloudFront Workflow Certificate Manager

  38. CloudFront Workflow Certificate Manager

  39. AWS Certificate Manager •AWS͕ఏڙ͢ΔSSLূ໌ॻ •CloudFront, ELB Ͱ࢖༻Մೳ •ແྉͰ࢖༻Մೳ •SSLূ໌ॻ͸ࣗಈͰߋ৽͞ΕΔ "84$FSUJpDBUF.BOBHFS

  40. None

  41. Get started

  42. Domain name Λೖྗͯ͠ Review and request

  43. ೖྗ಺༰Λ֬ೝͯ͠ Confirm and request

  44. Continue

  45. ೝূ଴ͪυϝΠϯͷҰཡ͕දࣔ͞ΕΔ

  46. ड৴ϝʔϧΛ֬ೝͯ͠ೝূ༻URLΛϒϥ΢βͰදࣔ

  47. ೝূ༻URLΛදࣔ͠ I Approve ΛΫϦοΫ

  48. Success!

  49. AWSίϯιʔϧͰ΋ೝূ͞Εͨ͜ͱ͕֬ೝͰ͖Δ

  50. CloudFront Workflow Certificate Manager

  51. Amazon CloudFront •AWSͷϗετ͢ΔCDNαʔϏε •αΠτͷߴ଎Խͱෛՙ࡟ݮΛ࣮ݱ •ো֐࣌ͷϑΣΠϧΦʔόʔʹ΋ରԠ "NB[PO$MPVE'SPOU

  52. None

  53. Distributions ͔Βઃఆର৅ͷ distribution Λબ୒

  54. General λϒͷ Edit ΛΫϦοΫ

  55. Custom SSL Certificate Ͱઌ΄Ͳ࡞੒ͨ͠ূ໌ॻΛબ୒

  56. ͠͹Β͘͢ΔͱSSLূ໌ॻ͕ઃఆ͞Ε͍ͯΔ͜ͱ͕֬ೝͰ͖·͢

  57. http://ja.amimoto-ami.com/slack/ ࣭͝໰͸͓ؾܰʹ:

  58. @Amimoto_Ami ja.amimoto-ami.com THANK YOU! Amazon CloudFront + AWS Certificate Manager