An Application Load Balancer supports HTTPS termination between the clients and the load balancer. Application Load Balancers also provide SSL certificate management through AWS Identity and Access Management (IAM) and AWS Certificate Manager for predefined security policies.

You can create an HTTPS listener, which uses encrypted connections (also called SSL offload). This feature enables traffic encryption between your load balancer and the clients initiating SSL or TLS sessions. Application Load Balancer supports terminating client TLS sessions. This allows you to offload TLS termination tasks to the load balancer while maintaining the source IP address for your back-end applications. You can choose from predefined security policies for your TLS listeners to meet compliance and security standards. AWS Certificate Manager (ACM) or AWS Identity and Access Management (IAM) can be used to manage your server certificates.

You can use SNI to serve multiple secure websites using a single TLS listener. If the hostname in the client matches multiple certificates, the load balancer selects the best certificate to use based on a smart selection algorithm.

Please take the opportunity to connect and share this video with your friends and family if you find it helpful.