Skip to content

Instantly share code, notes, and snippets.

@theist

theist/selfsigned_to_aws.sh

Created December 17, 2015 10:21
Show Gist options
  • Save theist/a6fb67a1c514eb051458 to your computer and use it in GitHub Desktop.
Save theist/a6fb67a1c514eb051458 to your computer and use it in GitHub Desktop.
Download ZIP
This creates a selfsigned certificate/key pair an upload it to AWS iam for use in ELBs and the like
Raw
selfsigned_to_aws.sh
#!/bin/bash
DOMAIN=$1
openssl req -new -subj '/CN=${DOMAIN}/O=ACME./C=ES' -newkey rsa:2048 -days 365 -nodes -x509 -keyout ${DOMAIN}.key -out ${DOMAIN}.crt
if aws iam list-server-certificates --query "ServerCertificateMetadataList[*].ServerCertificateName" --output text | grep -q ${DOMAIN} ; then
aws iam delete-server-certificate --server-certificate-name ${DOMAIN}
fi
aws iam upload-server-certificate --server-certificate-name ${DOMAIN} --certificate-body file://${DOMAIN}.crt --private-key file://${DOMAIN}.key --query "ServerCertificateMetadata.[ServerCertificateName,Expiration,Arn]" --output text
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment