- Newest
- Most votes
- Most comments
Hello.
Is it possible to access CloudFront by its DNS name (yyyyy.cloudfront.net)?
Is OAC configured in the S3 bucket policy?
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/private-content-restricting-access-to-s3.html
Also, for CloudFront, I assume you have tied the domain and the SSL certificate using the settings in the following document, but are you sure you have configured it correctly?
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/CNAMEs.html
Hello everyone, Thank you for your help guys!
I have resolved the issue I was facing with the SSL/TLS certificate not being recognized by CloudFront for my static website hosted on an S3 bucket. I want to share the solution with the community in case anyone else encounters a similar problem.
The key to solving this problem was adjusting the configuration between Amazon S3 and Amazon CloudFront. Specifically, I needed to disable the Static Website Hosting feature on my S3 bucket. This adjustment revealed additional settings related to Origin Access Control (OAC) in the CloudFront Distribution settings, which were not visible before.
After disabling the Static Website Hosting, I went back to my CloudFront distribution. Under the "Origins and Origin Groups" tab, I edited the origin settings. The option to configure Origin Access Control (OAC) was now available, and I set it up according to the AWS documentation. Update S3 Bucket Policy:
I updated the S3 bucket policy to grant permission to the CloudFront distribution. After making these changes and waiting for the CloudFront distribution to deploy, the SSL/TLS certificate was recognized, and the website is now accessible over HTTPS.
I hope this solution can help others facing similar challenges. I appreciate the support and suggestions provided by the community members, which guided me in the right direction.
Thank you,
Relevant content
- Accepted Answerasked 10 months ago
- AWS OFFICIALUpdated 9 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago