Generating Letsencrypt Personal Certs on Route53

Using AMI roles to restrict certificate generation

We have a bunch of machines behind haproxy load balancers. The haproxy is publicly accessible and can use the ACME HTTP method for certificate renewal. The machines behind it are using self-signed certs from our own CA, but there are cases where we might like to have certs on …

(Continues)