Do I need a ssl certificate if just pointing my domain to Cloudfront?

hashpipe asked:

I have a website running on a domain (e.g site.com). I have an additional domain(e.g sitecdn.com) which basically points to Amazon Cloudfront for delivery. Amazon Cloudfront in turn basically fetches the data from the main domain (site.com). I use this setup primarily to have multiple subdomains of my sitecdn.com to point to assets via the cdn.

The main website has a ssl certificate, and I intend to put all assets served from the cdn as https links only. Something like

<img src="https://img.sitecdn.com/image.jpg" />

I’m a little confused whether I need a ssl for my cdn domain. In cloudfront I can set the setting to allow both https and http traffic.

Do I need a ssl certificate for this ? If yes, then where do I install the ssl certificate, since I don’t have a server for sitecdn.com.

My answer:


With HTTPS, Amazon CloudFront only supports using the cloudfront.net hostname assigned to you. So you won’t be able to use your own domain name anyway; you’ll have to use https://whatever.cloudfront.net/resource.jpg instead.


View the full question and answer on Server Fault.

Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.