Slide 1
Slide 1 text
Amazon CloudFront
with
AWS Certificate Manager
@Amimoto_Ami
ja.amimoto-ami.com
Slide 2
Slide 2 text
ΞʔΩςΫνϟ
Slide 3
Slide 3 text
Amazon CloudFront
AWS Certificate Manager
w $%/Ͱίϯςϯπͷ৴ΛߴԽ
w 44-ূ໌ॻͷཧΛࣗಈԽ
࣮ݱ͢Δ͜ͱ
Slide 4
Slide 4 text
SSLূ໌ॻͷऔಘ
Workflow
४උ
Slide 5
Slide 5 text
४උ
Slide 6
Slide 6 text
ɾadministrator@your_domain
ɾhostmaster@your_domain
ɾpostmaster@your_domain
ɾwebmaster@your_domain
ɾadmin@your_domain
υϝΠϯೝূ༻ϝʔϧΞυϨε
Slide 7
Slide 7 text
͢ͰʹυϝΠϯೝূ༻ϝʔϧΞυϨεͰ
ϝʔϧͷड৴͕Մೳͳ߹ɺ
͜ΕҎ߱ͷ߲εΩοϓ͍ͯͩ͘͠͞
υϝΠϯೝূ༻ϝʔϧΞυϨε
Slide 8
Slide 8 text
υϝΠϯೝূ༻ϝʔϧΞυϨε͕༻Ͱ
͖ͳ͍߹ AWS SES Ͱϝʔϧड৴͢
ΔઃఆΛߦ͍·͢ɻ
υϝΠϯೝূ༻ϝʔϧΞυϨε
Slide 9
Slide 9 text
Amazon SES ઃఆ
Workflow
S3όέοτͷ४උ
ߏஙલͷ
४උ
Slide 10
Slide 10 text
Amazon SES ઃఆ
Workflow
S3όέοτͷ४උ
ߏஙલͷ
४උ
Slide 11
Slide 11 text
Amazon S3
w "NB[PO4*NQMF4UPSBHF4FSWJDF
w Πϯλʔωοτ༻ͷετϨʔδ
w 4&4Ͱड৴ͨ͠ϝʔϧΛ֨ೲ͢ΔͨΊʹ༻
"NB[PO4
Slide 12
Slide 12 text
όέοτϙϦγʔͷઃఆ
Workflow
S3όέοτͷ࡞
Slide 13
Slide 13 text
όέοτϙϦγʔͷઃఆ
Workflow
S3όέοτͷ࡞
Slide 14
Slide 14 text
No content
Slide 15
Slide 15 text
Create Bucket ΛΫϦοΫ͠·͢
Slide 16
Slide 16 text
Bucket Name, Region Λೖྗ͠ Create
Slide 17
Slide 17 text
όέοτϙϦγʔͷઃఆ
Workflow
S3όέοτͷ࡞
Slide 18
Slide 18 text
Properties - Permissions - Add bucket policy
Slide 19
Slide 19 text
Bucket Policy Λઃఆ͠ Save
Slide 20
Slide 20 text
Bucket Policy
https://docs.aws.amazon.com/ses/latest/DeveloperGuide/
receiving-email-permissions.html
Slide 21
Slide 21 text
Amazon SES ઃఆ
Workflow
S3όέοτͷ४උ
ߏஙલͷ
४උ
Slide 22
Slide 22 text
Amazon SES
w "NB[PO4*NQMF&NBJM4FSWJDF
w &NBJMͷૹड৴Λ࣮ߦ͢ΔαʔϏε
w $MPVE'SPOUͷೝূϝʔϧड৴ʹ༻
"NB[PO4&4
Slide 23
Slide 23 text
ϝʔϧड৴ςετ
Workflow
ϧʔϧηοτͷ࡞
Slide 24
Slide 24 text
No content
Slide 25
Slide 25 text
Email Receiving - Rule Sets - Create a Receipt Rule
Slide 26
Slide 26 text
Recipient ʹϝʔϧυϝΠϯ໊Λೖྗͯ͠ Add Recipient
Slide 27
Slide 27 text
දࣔ͞ΕͨઃఆΛ DNS αʔόʹͯઃఆ
Route53 Λ༻͍ͯ͠Δ߹ Use Route53
Slide 28
Slide 28 text
Route53 Λ༻͍ͯ͠Δ߹͜ͷը໘͕දࣔ͞ΕΔͷͰ
ͯ͢νΣοΫͯ͠ Create Record Sets
Slide 29
Slide 29 text
ࣄલ४උͰ࡞ͨ͠ S3 Bucket Λબͯ͠ Next Step
Slide 30
Slide 30 text
Rule Name Λೖྗͯ͠ Next Step
Slide 31
Slide 31 text
ઃఆ༰Λ֬ೝͯ͠ Create Rule Set
Slide 32
Slide 32 text
DNS มߋ͕ྃͯ͠ೝূ͕औΕΔͱ Status ͕ Enabled ʹͳΔ
Slide 33
Slide 33 text
ϝʔϧड৴ςετ
Workflow
ϧʔϧηοτͷ࡞
Slide 34
Slide 34 text
ϝʔϧΫϥΠΞϯτ͔ΒϝʔϧΛૹ৴ͯ͠ΈΔ
Slide 35
Slide 35 text
S3όέοτʹʮAMAZON_SES_SETUP_NOTIFICATIONʯҎ֎
ͷϑΝΠϧ͕อଘ͞Ε͍ͯΕϝʔϧૹ৴ਖ਼ৗʹߦΘΕ͍ͯΔ
Slide 36
Slide 36 text
SSLূ໌ॻͷ
औಘ
Slide 37
Slide 37 text
CloudFront
Workflow
Certificate Manager
Slide 38
Slide 38 text
CloudFront
Workflow
Certificate Manager
Slide 39
Slide 39 text
AWS Certificate
Manager
•AWS͕ఏڙ͢ΔSSLূ໌ॻ
•CloudFront, ELB Ͱ༻Մೳ
•ແྉͰ༻Մೳ
•SSLূ໌ॻࣗಈͰߋ৽͞ΕΔ
"84$FSUJpDBUF.BOBHFS
Slide 40
Slide 40 text
No content
Slide 41
Slide 41 text
Get started
Slide 42
Slide 42 text
Domain name Λೖྗͯ͠ Review and request
Slide 43
Slide 43 text
ೖྗ༰Λ֬ೝͯ͠ Confirm and request
Slide 44
Slide 44 text
Continue
Slide 45
Slide 45 text
ೝূͪυϝΠϯͷҰཡ͕දࣔ͞ΕΔ
Slide 46
Slide 46 text
ड৴ϝʔϧΛ֬ೝͯ͠ೝূ༻URLΛϒϥβͰදࣔ
Slide 47
Slide 47 text
ೝূ༻URLΛදࣔ͠ I Approve ΛΫϦοΫ
Slide 48
Slide 48 text
Success!
Slide 49
Slide 49 text
AWSίϯιʔϧͰೝূ͞Εͨ͜ͱ͕֬ೝͰ͖Δ
Slide 50
Slide 50 text
CloudFront
Workflow
Certificate Manager
Slide 51
Slide 51 text
Amazon CloudFront
•AWSͷϗετ͢ΔCDNαʔϏε
•αΠτͷߴԽͱෛՙݮΛ࣮ݱ
•ো࣌ͷϑΣΠϧΦʔόʔʹରԠ
"NB[PO$MPVE'SPOU
Slide 52
Slide 52 text
No content
Slide 53
Slide 53 text
Distributions ͔Βઃఆରͷ distribution Λબ
Slide 54
Slide 54 text
General λϒͷ Edit ΛΫϦοΫ
Slide 55
Slide 55 text
Custom SSL Certificate Ͱઌ΄Ͳ࡞ͨ͠ূ໌ॻΛબ
Slide 56
Slide 56 text
͠Β͘͢ΔͱSSLূ໌ॻ͕ઃఆ͞Ε͍ͯΔ͜ͱ͕֬ೝͰ͖·͢
Slide 57
Slide 57 text
http://ja.amimoto-ami.com/slack/
࣭͓͝ؾܰʹ:
Slide 58
Slide 58 text
@Amimoto_Ami
ja.amimoto-ami.com
THANK YOU!
Amazon CloudFront + AWS Certificate Manager