Slide 1

Slide 1 text

Amazon CloudFront with AWS Certificate Manager @Amimoto_Ami ja.amimoto-ami.com

Slide 2

Slide 2 text

ΞʔΩςΫνϟ

Slide 3

Slide 3 text

Amazon CloudFront AWS Certificate Manager w $%/Ͱίϯςϯπͷ഑৴Λߴ଎Խ w 44-ূ໌ॻͷ؅ཧΛࣗಈԽ ࣮ݱ͢Δ͜ͱ

Slide 4

Slide 4 text

SSLূ໌ॻͷऔಘ Workflow ४උ

Slide 5

Slide 5 text

४උ

Slide 6

Slide 6 text

ɾadministrator@your_domain ɾhostmaster@your_domain ɾpostmaster@your_domain ɾwebmaster@your_domain ɾadmin@your_domain υϝΠϯೝূ༻ϝʔϧΞυϨε

Slide 7

Slide 7 text

͢ͰʹυϝΠϯೝূ༻ϝʔϧΞυϨεͰ ϝʔϧͷड৴͕Մೳͳ৔߹͸ɺ ͜ΕҎ߱ͷ߲໨͸εΩοϓ͍ͯͩ͘͠͞ υϝΠϯೝূ༻ϝʔϧΞυϨε

Slide 8

Slide 8 text

υϝΠϯೝূ༻ϝʔϧΞυϨε͕࢖༻Ͱ ͖ͳ͍৔߹͸ AWS SES Ͱϝʔϧड৴͢ ΔઃఆΛߦ͍·͢ɻ υϝΠϯೝূ༻ϝʔϧΞυϨε

Slide 9

Slide 9 text

Amazon SES ઃఆ Workflow S3όέοτͷ४උ ߏஙલͷ ४උ

Slide 10

Slide 10 text

Amazon SES ઃఆ Workflow S3όέοτͷ४උ ߏஙલͷ ४උ

Slide 11

Slide 11 text

Amazon S3 w "NB[PO4*NQMF4UPSBHF4FSWJDF w Πϯλʔωοτ༻ͷετϨʔδ w 4&4Ͱड৴ͨ͠ϝʔϧΛ֨ೲ͢ΔͨΊʹ࢖༻ "NB[PO4

Slide 12

Slide 12 text

όέοτϙϦγʔͷઃఆ Workflow S3όέοτͷ࡞੒

Slide 13

Slide 13 text

όέοτϙϦγʔͷઃఆ Workflow S3όέοτͷ࡞੒

Slide 14

Slide 14 text

No content

Slide 15

Slide 15 text

Create Bucket ΛΫϦοΫ͠·͢

Slide 16

Slide 16 text

Bucket Name, Region Λೖྗ͠ Create

Slide 17

Slide 17 text

όέοτϙϦγʔͷઃఆ Workflow S3όέοτͷ࡞੒

Slide 18

Slide 18 text

Properties - Permissions - Add bucket policy

Slide 19

Slide 19 text

Bucket Policy Λઃఆ͠ Save

Slide 20

Slide 20 text

Bucket Policy https://docs.aws.amazon.com/ses/latest/DeveloperGuide/ receiving-email-permissions.html

Slide 21

Slide 21 text

Amazon SES ઃఆ Workflow S3όέοτͷ४උ ߏஙલͷ ४උ

Slide 22

Slide 22 text

Amazon SES w "NB[PO4*NQMF&NBJM4FSWJDF w &NBJMͷૹड৴Λ࣮ߦ͢ΔαʔϏε w $MPVE'SPOUͷೝূϝʔϧड৴ʹ࢖༻ "NB[PO4&4

Slide 23

Slide 23 text

ϝʔϧड৴ςετ Workflow ϧʔϧηοτͷ࡞੒

Slide 24

Slide 24 text

No content

Slide 25

Slide 25 text

Email Receiving - Rule Sets - Create a Receipt Rule

Slide 26

Slide 26 text

Recipient ʹϝʔϧυϝΠϯ໊Λೖྗͯ͠ Add Recipient

Slide 27

Slide 27 text

දࣔ͞ΕͨઃఆΛ DNS αʔόʹͯઃఆ Route53 Λ࢖༻͍ͯ͠Δ৔߹͸ Use Route53

Slide 28

Slide 28 text

Route53 Λ࢖༻͍ͯ͠Δ৔߹͸͜ͷը໘͕දࣔ͞ΕΔͷͰ ͢΂ͯνΣοΫͯ͠ Create Record Sets

Slide 29

Slide 29 text

ࣄલ४උͰ࡞੒ͨ͠ S3 Bucket Λબ୒ͯ͠ Next Step

Slide 30

Slide 30 text

Rule Name Λೖྗͯ͠ Next Step

Slide 31

Slide 31 text

ઃఆ಺༰Λ֬ೝͯ͠ Create Rule Set

Slide 32

Slide 32 text

DNS มߋ͕׬ྃͯ͠ೝূ͕औΕΔͱ Status ͕ Enabled ʹͳΔ

Slide 33

Slide 33 text

ϝʔϧड৴ςετ Workflow ϧʔϧηοτͷ࡞੒

Slide 34

Slide 34 text

ϝʔϧΫϥΠΞϯτ͔ΒϝʔϧΛૹ৴ͯ͠ΈΔ

Slide 35

Slide 35 text

S3όέοτʹʮAMAZON_SES_SETUP_NOTIFICATIONʯҎ֎ ͷϑΝΠϧ͕อଘ͞Ε͍ͯΕ͹ϝʔϧૹ৴͸ਖ਼ৗʹߦΘΕ͍ͯΔ

Slide 36

Slide 36 text

SSLূ໌ॻͷ औಘ

Slide 37

Slide 37 text

CloudFront Workflow Certificate Manager

Slide 38

Slide 38 text

CloudFront Workflow Certificate Manager

Slide 39

Slide 39 text

AWS Certificate Manager •AWS͕ఏڙ͢ΔSSLূ໌ॻ •CloudFront, ELB Ͱ࢖༻Մೳ •ແྉͰ࢖༻Մೳ •SSLূ໌ॻ͸ࣗಈͰߋ৽͞ΕΔ "84$FSUJpDBUF.BOBHFS

Slide 40

Slide 40 text

No content

Slide 41

Slide 41 text

Get started

Slide 42

Slide 42 text

Domain name Λೖྗͯ͠ Review and request

Slide 43

Slide 43 text

ೖྗ಺༰Λ֬ೝͯ͠ Confirm and request

Slide 44

Slide 44 text

Continue

Slide 45

Slide 45 text

ೝূ଴ͪυϝΠϯͷҰཡ͕දࣔ͞ΕΔ

Slide 46

Slide 46 text

ड৴ϝʔϧΛ֬ೝͯ͠ೝূ༻URLΛϒϥ΢βͰදࣔ

Slide 47

Slide 47 text

ೝূ༻URLΛදࣔ͠ I Approve ΛΫϦοΫ

Slide 48

Slide 48 text

Success!

Slide 49

Slide 49 text

AWSίϯιʔϧͰ΋ೝূ͞Εͨ͜ͱ͕֬ೝͰ͖Δ

Slide 50

Slide 50 text

CloudFront Workflow Certificate Manager

Slide 51

Slide 51 text

Amazon CloudFront •AWSͷϗετ͢ΔCDNαʔϏε •αΠτͷߴ଎Խͱෛՙ࡟ݮΛ࣮ݱ •ো֐࣌ͷϑΣΠϧΦʔόʔʹ΋ରԠ "NB[PO$MPVE'SPOU

Slide 52

Slide 52 text

No content

Slide 53

Slide 53 text

Distributions ͔Βઃఆର৅ͷ distribution Λબ୒

Slide 54

Slide 54 text

General λϒͷ Edit ΛΫϦοΫ

Slide 55

Slide 55 text

Custom SSL Certificate Ͱઌ΄Ͳ࡞੒ͨ͠ূ໌ॻΛબ୒

Slide 56

Slide 56 text

͠͹Β͘͢ΔͱSSLূ໌ॻ͕ઃఆ͞Ε͍ͯΔ͜ͱ͕֬ೝͰ͖·͢

Slide 57

Slide 57 text

http://ja.amimoto-ami.com/slack/ ࣭͝໰͸͓ؾܰʹ:

Slide 58

Slide 58 text

@Amimoto_Ami ja.amimoto-ami.com THANK YOU! Amazon CloudFront + AWS Certificate Manager