This guide shows how to generate new Transport Layer Security (TLS) certificates for EJBCA Cloud.
New TLS certificates are needed in the following circumstances:
-
The EJBCA Cloud instance is shut down within the Amazon environment, and the Public IP is released by Amazon.
-
An Elastic IP is added to the instance in place of the Public IP for persistence.
-
A custom DNS name is desired.
-
When using tools such as the ClientToolBox, the following error may be displayed:
"No subject alternative DNS name matching <instance ip>.compute-1.amazonaws.com found".
AWS Documentation
Information on AWS Public IP addressing is available in the AWS User Guide for Linux Instances.