Skip to content

Instantly share code, notes, and snippets.

@sneal

sneal/letsencrypt-pivotal.md

Last active January 13, 2020 21:21
Show Gist options
  • Save sneal/28fdf29a6cadcada213642deafedc6b9 to your computer and use it in GitHub Desktop.
Save sneal/28fdf29a6cadcada213642deafedc6b9 to your computer and use it in GitHub Desktop.
Download ZIP
Lets encrypt instructions for generating a certificate for Pivotal Platform
Raw
letsencrypt-pivotal.md

Let's Encrypt for Pivotal Platform w/Route53

Spin up a Docker container running Ubuntu

docker run -it ubuntu /bin/bash

Now from the running interactive shell we need to install certbot, the route53 plugin, and aws cli.

apt update
apt-get install -y certbot python3-certbot-dns-route53 curl unzip
curl "https://d1vvhvl2y92vvt.cloudfront.net/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"
unzip awscliv2.zip
./aws/install
aws2 configure

Once all those are installed we execute the request for a new cert. This works my adding route53 TXT entries for each domain entry to validate you control the domains.

certbot certonly \
  --dns-route53 \
  --dns-route53-propagation-seconds 30 \
  -d '*.sandbox.example.com, *.apps.sandbox.example.com, *.login.sys.sandbox.example.com, *.pks.sandbox.example.com, *.sys.sandbox.example.com, *.uaa.sys.sandbox.example.com'
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment