How Do I Apply an SSL Certificate to Other HUAWEI CLOUD Services?
After an SSL certificate is issued or uploaded, it can be used in other HUAWEI CLOUD services, such as WAF, ELB, and CDN.
Currently, you can push certificates to WAF, ELB, and CDN on HUAWEI CLOUD by one click and complete required configuration in the specific service for the certificate to take effect. If a certificate needs to be pushed to another HUAWEI CLOUD service, you need to download the certificate, upload the certificate to the corresponding service console, and deploy the certificate.
Applying Certificates in WAF, ELB, and CDN
SCM supports the push of certificates to WAF, ELB, and CDN. After the push, the certificates can be configured in the corresponding HUAWEI CLOUD services. After the configuration succeeds, data access through the HUAWEI CLOUD services is more secure.
You need to use SCM to push a certificate to the corresponding HUAWEI CLOUD service, and then configure the certificate in the corresponding HUAWEI CLOUD service to enable the HTTPS service. Perform the following steps to complete the check.
- Use SCM to push a certificate to other HUAWEI CLOUD services.
For details, see Pushing an SSL Certificate to Other Cloud Services.
- Configure the certificate in the corresponding HUAWEI CLOUD service.
- ELB: If HTTPS data transmission encryption is required, you need to associate a certificate when creating an HTTPS listener. If you choose to push the certificate to ELB in one click, you can select the pushed certificate in ELB. Otherwise, you need to manually upload the certificate. For details about how to set ELB parameters, see Creating a Certificate.
Generally, only server certificates need to be configured to authenticate servers for HTTPS-based business. For some key businesses, such as bank payment, two-way authentication is required for enhanced business security. For details about how to deploy certificates for two-way authentication, see Mutual Authentication.
- CDN: To implement HTTPS security acceleration, you need to configure an HTTPS certificate for the acceleration domain name and deploy the certificate on CDN nodes on the entire network. If you choose to push the certificate to CDN in one click, you can select the pushed certificate in CDN. Otherwise, you need to manually upload the certificate. For details about how to set CDN parameters, see HTTPS Certificate Requirements.
- WAF: You need to configure a certificate when adding a domain to WAF if HTTPS is used for communications between the client and WAF. If you choose to push the certificate to WAF in one click, you can select the pushed certificate in WAF. Otherwise, you need to manually upload the certificate. For details, see Adding a Domain Name.
If a certificate has been configured in WAF, you only need to update the certificate. For details, see Updating a Certificate.
If you have any questions during the configuration, refer to the corresponding service documentation or consult the corresponding service personnel.
- ELB: If HTTPS data transmission encryption is required, you need to associate a certificate when creating an HTTPS listener. If you choose to push the certificate to ELB in one click, you can select the pushed certificate in ELB. Otherwise, you need to manually upload the certificate. For details about how to set ELB parameters, see Creating a Certificate.
Applying Certificates in Other Cloud Products
If you want to deploy your certificate to other HUAWEI CLOUD services than the previously mentioned ones, download the certificate to your local PC and then upload and deploy it on the management console of the desired cloud service.
Did this article solve your problem?
Thank you for your score!Your feedback would help us improve the website.