CODEWITHSUNDEEP
amazon-web-servicessslssl-certificateamazon-elastic-beanstalk
qdequippe
qdequippe

Reputation: 1155

Config for multiple SSL Certificates on Application Load Balancer

I would like to configure multiple ssl certificates for application load balancer directly in my eb extensions file but impossible to set multiple ARN, below my config:

- namespace: aws:elbv2:listener:443
  option_name: SSLCertificateArns
  value: 'arn:aws:acm:eu-west-1:xxx' # or 'arn:aws:acm:eu-west-1:xxx,arn:aws:acm:eu-west-1:yyy'

https://docs.aws.amazon.com/elasticbeanstalk/latest/dg/command-options-general.html#command-options-general-elbv2-listener-default > SSLCertificateArns accepts only one ARN

I tried to separate arn by comma in value but I have this error

Updating Load Balancer listener named: arn:aws:elasticloadbalancing:eu-west-1:xxx failed Reason: Up to '1' certificate ARNs can be specified, but '2' were specified (Service: AmazonElasticLoadBalancingV2; Status Code: 400; Error Code: TooManyCertificates; Request ID: xxx

I can add SSL certificate manually but on every deployment a new environment is created (and an application load balancer) so my config is lost.

Did you find a way to fix this? or a workaround?

Upvotes: 4

Views: 1746

Answers (1)

qdequippe
qdequippe

Reputation: 1155

Thanks to AWS Support, here a workaround waiting the official implementation: create an ebextensions config file like this:

Resources:
    AddingSSLCert2:
        Type: "AWS::ElasticLoadBalancingV2::ListenerCertificate"
        Properties:
            ListenerArn: { "Ref" : "AWSEBV2LoadBalancerListener443" }
            Certificates:
                - CertificateArn: "your-arn"

Upvotes: 5

Related Questions