Skip to content

Instantly share code, notes, and snippets.

View ryanjdillon's full-sized avatar

Ryan J. Dillon ryanjdillon

View GitHub Profile
@ryanjdillon
ryanjdillon / ec2-nitro-enclave-ssl-cdk-stack.md
Last active September 9, 2024 19:26
AWS EC2 with Nitro Enclave ACM SSL Certificate management - no load balancer

CDK implementation utilizing Nitro Enclave for ACM SSL cert handling

This synth's, but it wasn't tested as it turns out you need an instance class with vCPU==4+, which turns out to be quite expensive.

There is some additional nginx config to be done on the instance following provisioning, outlined in these AWS docs starting at point #7: https://docs.aws.amazon.com/enclaves/latest/user/nitro-enclave-refapp.html#install-acm

This was for a personal project, so I don't particularly see the usefulness of this at this price-point in comparison to using a load balancer, or Letsencrypt with a micro/nano instance.

I'd be interested to hear what applications this might have for those of you looking into this.