First Generate a Private Key for SSL: This I am doing from the web server.
# openssl genrsa -out gateway_key.pem 2048
Now generate a csr with using the above key:
# root@ip-10-0-3-90:~# openssl req -new -sha256 -key gateway_key.pem -out gateway_key.csr
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:JP
State or Province Name (full name) [Some-State]:XXXX
Locality Name (eg, city) []:XXXX
Organization Name (eg, company) [Internet Widgits Pty Ltd]:XXXX Co Ltd
Organizational Unit Name (eg, section) []:XXXX
Common Name (e.g. server FQDN or YOUR name) []:gateway.X-XXXX.net
Email Address []:admin@X-XXXX.net
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:
root@ip-10-0-3-90:~#
Now Login to namecheap and Click on the SSLCertificate "Activation" link.
There you have to paste the gateway_key.csr content. Click Next.
Give the email id admin@X-XXXX.net for sending the activation email. Click Next.
This will send an activation email to admin@X-XXXX.net and click on that activation link and copy past the validation code in the activation url.
Now namecheap will send you the SSL certificate to the email id admin@X-XXXX.net
Now login to your AWS and take the ACM service and click on Import ssl certificate.
Here give the certificate and gateway_key.pem content.
Now click on review and import button. This will review and save the ssl certificate in ACM.
Now go to ELB and click on "Listeners" . There click on edit and change the SSL certificate that we just now added for the ELB.
# openssl genrsa -out gateway_key.pem 2048
Now generate a csr with using the above key:
# root@ip-10-0-3-90:~# openssl req -new -sha256 -key gateway_key.pem -out gateway_key.csr
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:JP
State or Province Name (full name) [Some-State]:XXXX
Locality Name (eg, city) []:XXXX
Organization Name (eg, company) [Internet Widgits Pty Ltd]:XXXX Co Ltd
Organizational Unit Name (eg, section) []:XXXX
Common Name (e.g. server FQDN or YOUR name) []:gateway.X-XXXX.net
Email Address []:admin@X-XXXX.net
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:
root@ip-10-0-3-90:~#
Now Login to namecheap and Click on the SSLCertificate "Activation" link.
There you have to paste the gateway_key.csr content. Click Next.
Give the email id admin@X-XXXX.net for sending the activation email. Click Next.
This will send an activation email to admin@X-XXXX.net and click on that activation link and copy past the validation code in the activation url.
Now namecheap will send you the SSL certificate to the email id admin@X-XXXX.net
Now login to your AWS and take the ACM service and click on Import ssl certificate.
Here give the certificate and gateway_key.pem content.
Now click on review and import button. This will review and save the ssl certificate in ACM.
Now go to ELB and click on "Listeners" . There click on edit and change the SSL certificate that we just now added for the ELB.
Comments