Skip to main content

lacework-global-225

ELB SSL Certificate expires in 5 Days

Description

The Elastic Load Balancer SSL certificates will expire in less than 5 days.

Remediation

  1. Sign in to the AWS Management Console.

  2. Navigate to EC2 dashboard at https://console.aws.amazon.com/ec2/.

  3. Select LOAD BALANCING > Load Balancers.

  4. Select the Load Balancer that was flagged as having a violating certificate attached.

  5. Select the Listeners tab.

  6. On the Listeners tab, for SSL Certificate, choose Change.

    • If you created or imported a certificate using AWS Certificate Manager, select Choose an existing certificate from AWS Certificate Manager (ACM), select the certificate from Certificate, and then choose Save.

    • If you imported a certificate using IAM, select Choose an existing certificate from AWS Identity and Access Management (IAM), select the certificate from Certificate, and then choose Save.

    • If you have a certificate to import but ACM is not supported in the Region, select Upload a new SSL Certificate to AWS Identity and Access Management (IAM). Type a name for the certificate, copy the required information to the form, and then choose Save. Note that the certificate chain is not required if the certificate is a self-signed certificate.