1. ACM certificate is used for…
- SSH to EC2
- HTTPS on load balancer
- S3 encryption only
- Terraform state
HTTPS with ACM
Source: doonops-curriculum/aws-routing--https-acm.md
Doonops lesson
Goal
HTTPS = lock on browser bar. ACM gives free cert if you prove domain ownership.
Simple explanation
Certificate = padlock on https://yoursite.com. Attach cert to ALB listener 443.
Technical view
Certificate = padlock on https://yoursite.com. Attach cert to ALB listener 443.
Think of it like
Certificate = padlock on https://yoursite.com. Attach cert to ALB listener 443.
Steps
- Read simple section
- Read analogy + diagram
- Copy project files
- Do local lab
Deep explanation
Layman words first, then technical detail — read slowly
DNS validation in Route53 easiest on AWS. HTTP still on 80 can redirect to 443.
Example (Doonops)
Modern HCL — names are examples, not from any third-party course
Example HCL
# see project files
Terraform runs on your computer — copy this HCL into a folder, then follow the local lab steps below.
Quick check
- Explain topic to a friend in 2 sentences
- Did local lab steps
Project files for this lab
Full implementation folder — copy all files, then run terraform commands
Lab project files (full folder)
Copy every file below into one folder — same as a real repo module. Then run the local lab steps.
Suggested folder: Suggested path: ~/doonops-terraform/15-https-acm/
versions.tfSee file purpose in the code belowterraform {
required_version = ">= 1.9.0"
}
Module check — did you get it?
2–3 quick questions before the next module
Routing & TLS — quick check
Quick check — did this module stick?