EJBCA Cloud AWS TLS Certificate Generation Guide

This guide shows how to generate new Transport Layer Security (TLS) certificates for EJBCA Cloud.

New TLS certificates are needed in the following circumstances:

  • The EJBCA Cloud instance is shut down within the Amazon environment, and the Public IP is released by Amazon.

  • An Elastic IP is added to the instance in place of the Public IP for persistence.

  • A custom DNS name is desired.

  • When using tools such as the ClientToolBox, the following error may be displayed:
    "No subject alternative DNS name matching <instance ip>.compute-1.amazonaws.com found".

AWS Documentation

Information on AWS Public IP addressing is available in the AWS User Guide for Linux Instances.