Use following steps for instructions to upload an SSL certificate to Amazon Web Services (AWS) HTTPS Load Balancer's Identity and Access Management (IAM) services.
AWS requires that the Private Key (which was created during the CSR generation) file NOT be protected with a pass phrase/password.
If the Private Key file was created without a passphrase, proceed to Step 1.
If the Private Key file was created with a pass phrase, using OpenSSL, run the following command line against that Private Key file to remove the pass phrase.
Note: You will be prompted for the original pass phrase one last time to run this command before it will be removed.
Step 1: Converting Certificate Files to PEM Formats
AWS requires that all files be in PEM formats.
First convert the Private Key file to a PEM format. Run the following command against the Private Key file:
When issued the SSL from Thawte, there are 2 certificate files to retrieve and convert. The SSL certificate file and the Intermediate CA (also referred to as CA bundle or chain) certificate file.
Run the following command against each of these certificates separately to convert both certificate files to a PEM format:
Step 2: Uploading the Certificate Files
You should now have the following files to upload, all in their PEM formats.
◦ Private Key: Created during the CSR generation process.
◦ SSL Server certificate: Issued by Thawte.
◦ Intermediate CA certificate: Issued by Thawte.
Use the following command to upload these certificate files:
The SSL certificate files are now uploaded to Amazon Web Services (AWS) HTTPS Load Balancer's Identity and Access Management (IAM) services.
Test your certificate installation using our Installation Checker Tool: https://ssltools.digicert.com/checker/views/checkInstallation.jsp