Delete SSL certificates from Amazon IAM account

Each account in the amazon has a limitation to hold 10 SSL certs and if you exceed this value, you wont be able to upload/attach any more SSL certificates to the load balancers (ELB’S). It will throw an quota exceed error.

You cannot delete amazon SSL certificates through GUI. Amazon API tools is required for this task.

Download the IAMCli utilities from amazon and untar it in /root

export AWS_IAM_HOME=/root/IAMCli-1.2.0/

List the available SSL certificates in the account

# /root/IAMCli-1.2.0/bin/iam-servercertlistbypath  –aws-credential-file  /root/my-account-creds.txt
arn:aws:iam::609154335954:server-certificate/answerable-com-lb-ssl-cert
arn:aws:iam::609154335954:server-certificate/cdn-olokiran-certif
arn:aws:iam::609154335954:server-certificate/cert
arn:aws:iam::609154335954:server-certificate/dsp-olokiran-com-cert
arn:aws:iam::609154335954:server-certificate/ostk-kik

Delete the unwanted certificate using the following command

/root/IAMCli-1.2.0/bin/iam-servercertdel –aws-credential-file my-account-creds.txt  -s dsp-olokiran-com-cert

where

# cat /root/my-account-creds.txt
AWSAccessKeyId=XXXXXXXXX
AWSSecretKey=xxxxxxxxxxxxxxxxxxxxxx

Using the same tools you can even attach SSL certificates to the ELB’s.

 

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: