Renew SSL certificate host at Cloutfrond using AWS Route53, ACM

Reissue certificate

openssl req -new -newkey rsa:2048 -sha256 -nodes -out '*' -keyout '*' -subj '/CN=*'
openssl x509 -in -text
openssl rsa -in * -text > example_com_private.pem
openssl x509 -inform PEM -in > example_com_public.pem
openssl x509 -inform PEM -in >> example_com_ca.pem

Upload to AWS ACM

#show cert name
aws iam list-server-certificates
aws iam --profile {your_aws_profile_name} upload-server-certificate --server-certificate-name example_com_202212 --certificate-body file://example_com_public.pem --private-key file://example_com_private.pem --certificate-chain file://GandiStandardSSLCA2.pem --path /cloudfront/example_com/

Update Cloudfront distribution

// command to delete certificate
$ aws iam delete-server-certificate \
--server-certificate-name <value>
// command to delete certificate name as example.com_old
$ aws iam delete-server-certificate — server-certificate-name
openssl pkcs12 -export -out -inkey * -in

Windows Server renew SSL certificate example




Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Breaking the fear of learning

Networking Task

100 Days of Code: Days 27, 28, 29

Lazy Distributed Computing on GCP AI Platform using Numpy for Model Prediction.

Continuous Integration: We All Need It… But What Is It?

The big enterprise question: ESB vs API

Programming Advice for Anyone.

Arduino and development board, photo by author.

Integrating Eta Into Your Scala Projects

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store


More from Medium

eLearnSecurity Web application Penetration Tester (eWPT) Review

Teknik Konfigurasi InterVLAN pada Cisco Packet Tracer

Wagtail blog part#2

Project ESP32 #4: BMP280 Sensors