Setting SSL Ciphers for ELB

I have been using Terraform to deploy Elastic Beanstalk app and there seem to be an issue when I am trying to set custom ciphers for Classic Load Balancer. I have to repeat deployments by changing just the namespace from sslpolicy to TLSHighPolicy and revert back to sslpolicy before the custom ciphers appear.

Error I get look something like this

failed Reason: Reference-Security-Policy attribute cannot be used together with attributes for ciphers and protocols. Either use the Reference-Security-Policy by itself or specify individual ciphers and protocols.

Settings I am using via Terraform

setting {
    namespace = "aws:elb:policies:sslpolicy"
    name      = "SSLProtocols"
    value     = "Protocol-TLSv1.2,Server-Defined-Cipher-Order,ECDHE-ECDSA-AES256-GCM-SHA384,ECDHE-ECDSA-AES128-GCM-SHA256,ECDHE-RSA-AES256-GCM-SHA384,ECDHE-RSA-AES128-GCM-SHA256"
  }

This works just fine after just manipulating with name and namespaces. This seems to be a bug at AWS's end. Please comment. Thanks.

Themen

Kalkulation Vernetzung & Bereitstellung von Inhalten DevOps

Relevanter Inhalt

Wie behebe ich den Fehler „Bucket cannot have ACLs set with ObjectOwnership's BucketOwnerEnforced setting“ in CloudFormation?
AWS OFFICIALAktualisiert vor einem Jahr
Warum ist meine Secrets Manager Lambda-Rotationsfunktion mit dem Fehler „Database engine must be set to 'postgres'/'mysql“ fehlgeschlagen?
AWS OFFICIALAktualisiert vor 10 Monaten
Wie behebe ich Probleme mit hoher Latenz auf meinem ELB Classic Load Balancer?
AWS OFFICIALAktualisiert vor einem Jahr
Wie behebe ich den Fehler „The specified queue does not exist or you do not have access to it.“, wenn ich einen AWS Glue Job ausführe, um Nachrichten an Amazon SQS in einer anderen Region zu senden?
AWS OFFICIALAktualisiert vor 3 Jahren