The install procedure above initially configures eagle-i with a self-signed certificate; this is acceptable for an environment, but not for a instance. In order to finalize the installation of a production instance, please follow the steps below.
These files are security-sensitive. Please make sure they are transferred to you in a secure manner (e.g. a memory stick, or using the scp command) and delete them from your personal machine once they are installed. If in doubt, please ask for assistance of your IT department.
Obtain, from the person who purchased the certificate, the following files:
Assuming the files are located in a directory
/my-home/aws/cert on your machine, here are two methods for securely transferring the files to your EC2 instance:
skc-macbook:~ sophia$ ssh -i "aws-eaglei-ami.pem" firstname.lastname@example.org Last login: Wed Aug 10 13:19:32 2016 from 18.104.22.168 [root@ip-172-31-54-208 ~]# mkdir /opt/eaglei/install
In another terminal window, go to the directory containing the certificate files
Do a SCP of the files to the newly created install folder on your EC2 instance (substitute your own file names and public hostname)
scp -i "aws-eaglei-ami.pem" key.pem cert.crt ca.crt email@example.com
cd /my-home/aws/cert scp -i "aws-eaglei-ami.pem" key.pem cert.crt ca.crt firstname.lastname@example.org:/opt/eaglei/install/.
In the SSH terminal,
sh /bin/cert-install.sh -b ca.crt -c cert.crt -k key.pem
cert-install.shscript is finished.
Using an online SSL validation service, such as http://www.geocerts.com/ssl_checker, enter your public hostname to verify that the certificate has been installed correctly
Be sure to remove the security sensitive files used for installation
[root@ip-172-31-54-208 install]# rm ca.crt cert.crt key.pem