Compute - SSL Server Certificates

Question 1

What is the purpose of a server certificate in an Application Load Balancer (ALB)?

Answer 1

• Allows the ALB to receive encrypted traffic over HTTPS
• Establishes an encrypted communication channel between clients and the ALB

Question 2

What are SSL and TLS in relation to server certificates?

Answer 2

• SSL (Secure Sockets Layer) and TLS (Transport Layer Security) are cryptographic protocols used for certificates in ALBs

Question 3

What is an X.509 certificate?

Answer 3

• A digital ID provisioned by a Certificate Authority (CA)
• Used to terminate encrypted connections and decrypt requests in the ALB

Question 4

What are the options for selecting a certificate when configuring HTTPS listeners in an ALB?

Answer 4

• Choose a certificate from AWS Certificate Manager (ACM)
• Upload a certificate to ACM
• Choose a certificate from AWS Identity and Access Management (IAM)
• Upload a certificate to IAM

Question 5

What is AWS Certificate Manager (ACM)?

Answer 5

• A service for creating and provisioning SSL/TLS server certificates in AWS
• Simplifies the configuration process for certificates in an ALB

Question 6

When would you use IAM as your certificate manager for an ALB?

Answer 6

• When deploying ELBs in regions not supported by ACM
• To use third-party certificates

Question 7

How can you use ACM for certificates?

Answer 7

• Create certificates within ACM
• Import existing certificates from outside of AWS

Question 8

What is the preferred option for managing certificates in an ALB?

Answer 8

• Using ACM as the certificate manager