What would be the command line necessary to deploy one of the sites’ certificates to the load balancer?

By:
In: SOA-C02
Tagged:
With: 1 Comment
A SysOps administrator has been able to consolidate multiple, secure websites onto a single server, and each site is running on a different port.The administrator now wants to start a duplicate server in a second Availability Zone and put both behind a load balancer for high availability.

What would be the command line necessary to deploy one of the sites’ certificates to the load balancer?

aws kms modify-listener –-load-balancer-name my-load-balancer-–certificates CertificateArn=arn:aws:iam::123456789012:server-certifiate/my-new-server-cert

aws elb set-load-balancer-listener-ssl-certificate –load-balancer-name my-load-balancer –-load-balancer-port 443 –-ssl-certificate-id arn:aws:iam::123456789012:server-certificate/new-server-cert

aws ec2 put-ssl-certificate –-load-balancer-name my-load-balancer –-load-balancer-port 443 –-ssl-certificate-id arn:aws:iam::123456789012:server-certificate/new-server-cert

aws acm put-ssl-certificate –-load-balancer-name my-load-balancer –-load-balancer-port 443 –-ssl-certificate-id arn:aws:iam::123456789012:server-certificate/new-server-cert

Explanations:

The command usesaws kms modify-listener, which is not a valid command for deploying SSL certificates to a load balancer. KMS (Key Management Service) does not manage load balancer listeners directly.

This command correctly usesaws elb set-load-balancer-listener-ssl-certificateto associate an SSL certificate with a listener on a specified load balancer. The command structure is correct and follows the AWS CLI syntax for Elastic Load Balancing.

The commandaws ec2 put-ssl-certificateis not a valid command. SSL certificates are not associated with EC2 instances directly, but rather with load balancers. The correct command would involve the ELB service, not EC2.

The commandaws acm put-ssl-certificateis invalid because theput-ssl-certificateoperation does not exist in the ACM (AWS Certificate Manager) service. ACM is used for managing certificates, but you cannot directly associate a certificate to a load balancer using this command.

2025-10-08

1 Comment

  1. Anna
    Author

    I scheme that the answer is:
    aws elb set-load-balancer-listener-ssl-certificate –load-balancer-name my-load-balancer –-load-balancer-port 443 –-ssl-certificate-id arn:aws:iam::123456789012:server-certificate/new-server-cert

Leave a Reply

Your email address will not be published. Required fields are marked *

1 × 2 =