What would be the command line necessary to deploy one of the sites’ certificates to the load balancer?
aws kms modify-listener –-load-balancer-name my-load-balancer-–certificates CertificateArn=arn:aws:iam::123456789012:server-certifiate/my-new-server-cert
aws elb set-load-balancer-listener-ssl-certificate –load-balancer-name my-load-balancer –-load-balancer-port 443 –-ssl-certificate-id arn:aws:iam::123456789012:server-certificate/new-server-cert
aws ec2 put-ssl-certificate –-load-balancer-name my-load-balancer –-load-balancer-port 443 –-ssl-certificate-id arn:aws:iam::123456789012:server-certificate/new-server-cert
aws acm put-ssl-certificate –-load-balancer-name my-load-balancer –-load-balancer-port 443 –-ssl-certificate-id arn:aws:iam::123456789012:server-certificate/new-server-cert
Explanations:
The command usesaws kms modify-listener, which is not a valid command for deploying SSL certificates to a load balancer. KMS (Key Management Service) does not manage load balancer listeners directly.
This command correctly usesaws elb set-load-balancer-listener-ssl-certificateto associate an SSL certificate with a listener on a specified load balancer. The command structure is correct and follows the AWS CLI syntax for Elastic Load Balancing.
The commandaws ec2 put-ssl-certificateis not a valid command. SSL certificates are not associated with EC2 instances directly, but rather with load balancers. The correct command would involve the ELB service, not EC2.
The commandaws acm put-ssl-certificateis invalid because theput-ssl-certificateoperation does not exist in the ACM (AWS Certificate Manager) service. ACM is used for managing certificates, but you cannot directly associate a certificate to a load balancer using this command.