Create SSL Certificate and Attach to OCI Load Balancer to allow HTTPS Traffic

This guide walks through creating an SSL certificate in OCI and attaching it to a Load Balancer to enable HTTPS traffic.

---

1. Navigate to the Load Balancer

1. Open the OCI Console.
2. Go to Networking → Load Balancers.
3. Select your target Load Balancer.

---

2. Access Listener Configuration

In the Load Balancer details, go to Listeners and choose Create or Edit Listener.

---

3. Choose HTTPS Protocol

1. When creating or editing a listener, select HTTPS as the protocol.
2. OCI will prompt for a certificate.

---

4. Add a Certificate

1. In the Certificates section, click Create Certificate.
2. Provide a name and choose Upload Certificate or Generate a Self-Signed Certificate.

---

If Uploading a Certificate

• Upload the Public Certificate, Private Key, and optionally CA Certificate.

---

If Generating a Self-Signed Certificate

• Provide basic details (Common Name, Validity Period).

---

5. Review Certificate Details

After creation, verify the certificate details in the Load Balancer’s Certificates tab.

---

6. Attach Certificate to Listener

1. In the listener configuration, select the newly created certificate.
2. Confirm protocol HTTPS.

---

7. Configure Backend Set

Ensure your backend set supports HTTPS or HTTP as required. Adjust health checks and SSL settings.

---

8. Validate the Setup

1. Save changes and deploy.
2. Access the Load Balancer’s public IP or DNS via https:// to confirm.

---

Additional Screens for Reference

---

Notes

• For production, use a certificate from a trusted CA.
• Update listener rules and security lists to allow port 443.
• Rotate or renew certificates before expiration to maintain service availability.