Cloudfront serving over own SSL certificate

ssl https amazon-web-services amazon-s3 amazon-cloudfront

Toby · Mar 2, 2011 · Viewed 23k times · Source

does anyone know if its possible to serve with cloudfront over https with your own certificate while using your own CNAME? i can't even find a way to set up my own SSL cert over S3... so im not sure if this is even possible.

UPDATE: if someone is interested in an update about this issue - maxcdn.com offers to host your SSL cert on your domain for only $59 flat fee a month.

it's not amazon but it even supports pulling from your server and hosting forever or if you send a cache control header for whatever time you specify until it fetches the original url again.

the whole offer is pretty neat. :D

Answer

I looked into this extensively, and no, currently it's not possible to use HTTPS with CNAMEs unless you're able to ignore cert name mismatches on the client side. HTTPS works with "simple" bucket names, but CNAMEs only work with bucket names that are fully-qualified domains.

~~AWS is always adding new features, so I can see them being able to serve up custom certificates at some point, but there's no support for that yet.~~

~~See: http://stackoverflow.com/questions/3048236/amazon-s3-https-ssl-is-it-possible~~

edit: Still not possible for direct access to S3, but it is possible through CloudFront: http://aws.amazon.com/cloudfront/custom-ssl-domains/

Cloudfront serving over own SSL certificate

Answer

Related questions