Alagesan Palani tutorial explaining how to make your AWS instance safer by automatically generating LetsEncrypt certificates. Conveniently.
LetsEncrypt is a free certificate provider and myriads of tools and technologies available to automate its certificate generation.
In his solution, he uses HA proxy. You learn how to create Ansible inventory for a proxy server. All the tasks described assumed to have appropriate aws_access_key, aws_secret_key and region setup properly. For proving that you own domain you will be using a dns-01-based challenge, as this is pretty straightforward with AWS Route53, and the dehydrated client can automate that.
He then describes and provides playbook example code for:
- Installing LetsEncrypt/Dehydrated client
- Configuration of the client
- How to generate certificates and
- How to apply certs to HAProxy
Straight to the point tutorial. Nice.
[Read More]