Skip to main content

lacework-global-226

ELB SSL Certificate expires in 45 Days

Description

The Elastic Load Balancer SSL certificates will expire in less than 45 days.

Remediation

  1. Sign in to the AWS Management Console.

  2. Navigate to EC2 dashboard at https://console.aws.amazon.com/ec2/.

  3. Select LOAD BALANCING > Load Balancers.

  4. Select the Load Balancer that was flagged as having a violating certificate attached.

  5. Select the Listeners tab.

  6. On the Listeners tab, for SSL Certificate, choose Change.

    • If you created or imported a certificate using AWS Certificate Manager, select Choose an existing certificate from AWS Certificate Manager (ACM), select the certificate from Certificate, and then choose Save.

    • If you imported a certificate using IAM, select Choose an existing certificate from AWS Identity and Access Management (IAM), select the certificate from Certificate, and then choose Save.

    • If you have a certificate to import but ACM is not supported in the Region, select Upload a new SSL Certificate to AWS Identity and Access Management (IAM). Type a name for the certificate, copy the required information to the form, and then choose Save. Note that the certificate chain is not required if the certificate is a self-signed certificate.