Avatar of enthuguy
enthuguy
Flag for Australia asked on

Windows Server 2016 SSL Certificate

Hi Windows Server experts,

Just need a general guidance on this scenario pls

In AWS EC2 Windows Server 2016 (serverA), have manually installed softwares,  imported/configured SSL certificates, etc for one of my application, my application works fine in https....all good at this stage.

As you know, in AWS, we have an option to create an AMI (Snapshot) from an EC2. Using this AMI we can create subsequent servers instances (serverB, serverC, etc , so we dont have to reinstall and configure softwares once again.

My Request is:
If I launch and create new EC2 Windows server based on above AMI, Do I have to perform anything extra for SSL certificates to work on serverB, serverC, so on? would that works as it was working on the serverA.

please suggest. and advice.

Thanks in advance
Windows OSWindows 10AWSAzureWindows Server 2016

Avatar of undefined
Last Comment
enthuguy

8/22/2022 - Mon
Joshua Grantom

How are the certificates used? Are they added to trusted certificates or are they used to authenticate the server?
enthuguy

ASKER
HI Joshua,

They are imported into certificate store "Web Hosting" using

I'm getting familiar in SSL :)
ASKER CERTIFIED SOLUTION
Joshua Grantom

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
enthuguy

ASKER
Thanks Joshua,
Yes, it is a wildcard certificate.

Yes, it is domain joined (spot on joshua)

Could you provide a link on sysprep that you are suggesting please?

are you talking about this?
PS C:\> C:\ProgramData\Amazon\EC2-Windows\Launch\Scripts\InitializeInstance.ps1 -Schedule
PS C:\> C:\ProgramData\Amazon\EC2-Windows\Launch\Scripts\SendEventLogs.ps1 -Schedule

Open in new window

All of life is about relationships, and EE has made a viirtual community a real community. It lifts everyone's boat
William Peck
Joshua Grantom

I would follow Amazon best practice to sysprep. It's pretty straight forward.

https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/ami-create-standard.html
enthuguy

ASKER
Thanks Joshua,
Since we use wild card, it worked and thx for the sysprep. I was able to create a clean AMI after that.