https SSL AWS ELB Single-Instance

Question

I'm trying to set up an SSL certificate for a project. I have the app hosted in AWS via a "single-instance elastic beanstalk application".

I have seen tutorials on how to do it when you are using a load-balancer, but I am not due to cost constraints (~$30/mth just to have that running, per application :S).

I have registered a domain via Route53. The site works via http://

I have a certificate issued/verified via AWS Certificate Manager. It says it's "In use? No" though (which seems to be the problem)!

I've tried to add a file named to .ebextensions with the following code:

Resources:
    sslSecurityGroupIngress: 
    Type: AWS::EC2::SecurityGroupIngress
    Properties:
      GroupId: {"Fn::GetAtt" : ["AWSEBSecurityGroup", "GroupId"]}
      IpProtocol: tcp
      ToPort: 443
      FromPort: 443
      CidrIp: 0.0.0.0/0

I believe I've "opened" up port 443 via the S3 security group:

Unsure what is wrong, as it is not able to reach https://www.fake.com.

Seems like there's a way to select the cert via the load-balanced method; do I have to do something similar?

Answer 1

Amazon Certificate Manager(ACM) doesn't support single instance. You can try LetsEncrypt if you want a free SSL for your website: https://www.tutcodex.com/ssl-on-single-instance-elastic-beanstalk-tutorial/