Set up Google Bucket for SSL

0
votes

We have our domain and bucket set up on Google, however I can't figure out how to set up SSL.

  • Purchased a certificate, have it installed.
  • Set up the front-end to handle SSL, have the IP Address.
  • SSL certificate shows up when navigating to the IP Address, error because the IP Address does not match the certificate

DNS Settings: Name Servers are set to "Use the Google Domains name servers"

Registered hosts: Not Set

Synthetic records: Subdomain forward, domain.com -> www.domain.com G Suite Enabled

Custom Resource records: www CNAME 1h c.storage.googleapis.com.

What am I missing? Thanks in Advance

2
google-cloud-storagegoogle-domains
Do you try to plug directly your bucket to your DNS? - guillaume blaquiere
Yes. Not the IP Address, but the googleapis CNAME. - dave2118

2 Answers

2
votes

You can configure SSL for hosted sites on Google Cloud Storage. It seems that this is what you are trying to achieve, so there are some posts and articles that might you help configure it and avoid possible errors and mistakes during the configuration.

I would recommend you take a look at the below posts and articles, on how to achieve this, without errors.

Let me know if the information helped you!

1
votes

You can't use map directly your DNS to the c.storage.googleapis.com. name. You have to pass through a network layer that make the interface between the Cloud Storage and the DNS.

On GCP, you can use a Global Load Balancer for achieving this. The advantage of this Global Load Balancer is that route traffic to the closest storage replication if you are in multi-region storage class. You can also use the storage metadata to set the correct cache on your object. By this way, the storage act as a CDN

As gso_gabriel mentioned, you have also another solution with Cloud Flare or other cloud solution. But it's never direct!