per-entity - Re: [Per-Entity] A little MDQ mvp in AWS
Subject: Per-Entity Metadata Working Group
List archive
- From: Patrick Radtke <>
- To: Tom Scavo <>
- Cc: Christopher Hubing <>, Per-Entity Metadata Working Group <>
- Subject: Re: [Per-Entity] A little MDQ mvp in AWS
- Date: Thu, 13 Oct 2016 15:33:21 -0700
- Ironport-phdr: 9a23:LyhmGx+E09/xbf9uRHKM819IXTAuvvDOBiVQ1KB90+8cTK2v8tzYMVDF4r011RmSAtWdtqkP0reempujcFJDyK7JiGoFfp1IWk1NouQttCtkPvS4D1bmJuXhdS0wEZcKflZk+3amLRodQ56mNBX660e/5j8KGxj5KRE9ZqGsQtaT3IyL0LWO/JibWA5Bmj31Na9oNx6/swL5t88KjJFkJ7prjBbFvy0bVf5RwDZQLE6Jnh3/rv258IJg/mwEo/s97c9LUo3xfr4iUKdZADkgL2Ep9YvgshyVHljH3WcVTmhDykkAOAPC9hyvG86p6iY=
On Thu, Oct 13, 2016 at 12:31 PM, Tom Scavo
<>
wrote:
>> It's user managed, you configure from the AWS Console or command line for
>> each custom domain you wish to serve.
>
> Sorry, I forgot you are new to the group. Patrick and others have
> mentioned that some CDNs will retrieve the TLS key via a secure
> channel, thereby precluding the need to store the key in the
> filesystem.
>
> Does your CDN have this feature? (this is an indispensable feature IMO)
Cloudfront (and AWS in general) has two options for managing your own keys:
1) Amazon can create and manage a key for your domain. You never see
the key, and only approve it (they send an email to admin@domainname
to request approval). Amazon then manages renewals. These are DV
certs, and are considered valid by all major browsers. I'm not sure
what the compatibility is for things other than browsers.
2) Bring your own key. You upload it securely to cloudfront. You have
no access or ability to download the key from cloud front. You have to
manage renewals yourself.
-Patrick
- RE: [Per-Entity] A little MDQ mvp in AWS, (continued)
- RE: [Per-Entity] A little MDQ mvp in AWS, Cantor, Scott, 10/13/2016
- Re: [Per-Entity] A little MDQ mvp in AWS, Patrick Radtke, 10/13/2016
- RE: [Per-Entity] A little MDQ mvp in AWS, Christopher Hubing, 10/13/2016
- RE: [Per-Entity] A little MDQ mvp in AWS, Cantor, Scott, 10/13/2016
- Re: [Per-Entity] A little MDQ mvp in AWS, Nicholas Roy, 10/13/2016
- RE: [Per-Entity] A little MDQ mvp in AWS, Cantor, Scott, 10/13/2016
- Re: [Per-Entity] A little MDQ mvp in AWS, Tom Scavo, 10/13/2016
- Re: [Per-Entity] A little MDQ mvp in AWS, Christopher Hubing, 10/13/2016
- Re: [Per-Entity] A little MDQ mvp in AWS, Ian Young, 10/13/2016
- Re: [Per-Entity] A little MDQ mvp in AWS, Christopher Hubing, 10/13/2016
- Re: [Per-Entity] A little MDQ mvp in AWS, Tom Scavo, 10/13/2016
- Re: [Per-Entity] A little MDQ mvp in AWS, Patrick Radtke, 10/13/2016
- Re: [Per-Entity] A little MDQ mvp in AWS, Christopher Hubing, 10/14/2016
- Re: [Per-Entity] A little MDQ mvp in AWS, Ian Young, 10/13/2016
- Re: [Per-Entity] A little MDQ mvp in AWS, Christopher Hubing, 10/13/2016
- RE: [Per-Entity] A little MDQ mvp in AWS, Cantor, Scott, 10/13/2016
Archive powered by MHonArc 2.6.19.