SSL certification on EC2 for AWS

Damidu

New Member
Hello,
I'm trying to install a SSL certificate to my application.
I can acess to it from ec2-xx-xx-xxx-xxx.eu-north-1.compute.amazonaws.com .

When I try to create a certificate for the server "ec2-xx-xx-xxx-xxx.eu-north-1.compute.amazonaws.com" it ask me for a email validation to postmaster@ec2-xx-xx-xxx-xxx.eu-north-1.compute.amazonaws.com that I can't access on.

There is any way to do the certification directly by AWS?

regards,
Davide
 

Damidu

New Member
Hello,
I tried but I'm receiving this error:

[ec2-user@ip-xxx-xx-xx-xxx ~]$ sudo certbot certonly --standalone
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator standalone, Installer None
Please enter in your domain name(s) (comma and/or space separated) (Enter 'c'
to cancel): ec2-xx-xx-xxx-xxx.eu-north-1.compute.amazonaws.com
Requesting a certificate for ec2-xx-xx-xxx-xxx.eu-north-1.compute.amazonaws.com
An unexpected error occurred:
The server will not issue certificates for the identifier :: Error creating new order :: Cannot issue for "ec2-xx-xx-xxx-xxx.eu-north-1.compute.amazonaws.com": The ACME server refuses to issue a certificate for this domain name, because it is forbidden by policy
Please see the logfiles in /var/log/letsencrypt for more details.


Thanks,
Davide
 

Max

Administrator
Staff member
Hello

Try to assign valid non amazonaws.com domain name, i. e. stream.mycompany.com to your instance and write this domain name on your DNS server.
Generally domain sellers allow to write DNS A record for your domain, i. e.

stream.mycompany.com 9.9.9.9

here 9.9.9.9 is IP address of your AWS instance
 

Max

Administrator
Staff member
Hello

The certbot claims you can't issue SSL certificate for domain ec2-{ip}.amazonaws.com
Try to assign valid custom domain name, i.e. test.mycompany.com, resolve this domain name to your IP address and then try again.
 
Top