<aside> ๐ก
ACM ์์ฑํ๋ ๋ถ๋ถ์์ ๊ถํ์ด ํ์ํจ!
</aside>
git clone <https://github.com/OpenVPN/easy-rsa.git>
cd easy-rsa/easyrsa3
./easyrsa init-pki
./easyrsa build-ca nopass
./easyrsa --san=DNS:server build-server-full server nopass
./easyrsa build-client-full client1.domain.tld nopass
mkdir ~/custom_folder/
cp pki/ca.crt ~/custom_folder/
cp pki/issued/server.crt ~/custom_folder/
cp pki/private/server.key ~/custom_folder/
cp pki/issued/client1.domain.tld.crt ~/custom_folder
cp pki/private/client1.domain.tld.key ~/custom_folder/
cd ~/custom_folder/
# ์ฌ์ค์์ ๋ง๋ OpenSSL ์ธ์ฆ์๋ฅผ AWS Certificate Manager๋ก ๊ฐ์ ธ์ค๊ธฐ
aws acm import-certificate --certificate fileb://server.crt --private-key fileb://server.key --certificate-chain fileb://ca.crt
aws acm import-certificate --certificate fileb://client1.domain.tld.crt --private-key fileb://client1.domain.tld.key --certificate-chain fileb://ca.crt