由网友(可惜没如果っ)分享简介：我使用亚马逊的弹性魔豆我的JSP Web部署。我想我的应用程序应该只在HTTPS运行。我也配置负载调度器监听HTTPS请求为好。但我没能找到一种方法，它只会变得HTTPS。我想我的配置EBS服务器（使用腻子和放大器;我的机器的IP我编辑的server.xml和放大器; web.xml中，使每个请求将成为HTTP...

我使用亚马逊的弹性魔豆我的JSP Web部署。 我想我的应用程序应该只在HTTPS运行。 我也配置负载调度器监听HTTPS请求为好。 但我没能找到一种方法，它只会变得HTTPS。 我想我的配置EBS服务器（使用腻子和放大器;我的机器的IP我编辑的server.xml和放大器; web.xml中，使每个请求将成为HTTPS按照教程的http://www.itworld.com/development/79351/how-configure-tomcat-always-require-https) 但是，当我做的话EBS服务器的健康状况有所下降（红色）。 此外，我注意到，当负荷应用程序的增长超出阈值，那么新的实例被创建和放大器;当负载下来那么旧实例将被删除和放大器;新的一个是preSERVER所以请谁能告诉我如何处理这个问题。

在此先感谢。

解决方案

这是的配置HTTPS为您的AWS弹性魔豆环境：

  

您可以配置您的AWS弹性魔豆的环境中使用HTTPS为您的应用程序。配置HTTPS确保客户端连接到负载平衡器通信加密。

整个过程稍有涉及，，你需要做以下高级步骤的：

     创建与您的DNS提供商的自定义域。   创建并上传一个SSL证书AWS身份和访问管理（IAM AWS）。   更新您的弹性魔豆的环境中使用HTTPS。   

具体来说，部分中的第3步：更新您的弹性魔豆的环境中使用HTTPS 的概述了如何配置根据需要，一旦你的自定义域和SSL证书加载平衡器到位：

  

在收到您的亚马逊资源名称（ARN），您需要在您的弹性魔豆环境下的信息更新您的负载均衡器配置设置：

        在HTTP端口 - 设置该端口为关闭或 80   在HTTPS端口 - 设置该端口为 443 或 8443   

I am using Amazon Elastic Beanstalk for my JSP web deployment. I want my application should be run only on HTTPS. I have also configured load scheduler to listen HTTPS request as well. But i am not able to find a way where it will become HTTPS only. I tried to configure my EBS server(using PUTTY & my machine ip i edited server.xml & web.xml so that each request will become HTTPS as per tutorial http://www.itworld.com/development/79351/how-configure-tomcat-always-require-https) But when i done this then EBS server health gone down(red). Also i noticed when load on application grows beyond threshold then new instance is created & when load gets down then old instance will be deleted & new one is preserver so please somebody tell me how to deal with this problem.

Thanks in advance.

解决方案

This is explained in Configuring HTTPS for your AWS Elastic Beanstalk Environment:

You can configure your AWS Elastic Beanstalk environment to use HTTPS for your application. Configuring HTTPS ensures traffic encryption for client connections to the load balancer.

The entire process is slightly involved, you will need to do the following high-level steps:

Create a custom domain with your DNS provider. Create and upload an SSL certificate to AWS Identity and Access Management (AWS IAM). Update your Elastic Beanstalk environment to use HTTPS.

Specifically, section Step 3: Update Your Elastic Beanstalk Environment to Use HTTPS outlines how to configure you load balancer as desired once your custom domain and SSL certificate are in place:

After you receive your Amazon Resources Name (ARN), you need to update your load balancer configuration settings in your Elastic Beanstalk environment with the following information:

HTTP port — set this port to OFF or 80 HTTPS port — set this port to 443 or 8443