Would like to get some ideas/possible options on the for the below scenario:
Problem Statement: We want enable mTLS to add an extra layer of security to the public endpoints exposed via Kong.
- Kong Enterprise deployed in a DB less mode in AWS EKS cluster
- AWS ALB is used as the Kong Ingress Controller
- ACM is used for the generation of public certificates
Given private keys cannot be exported from the AWS ACM, what are the possible options to implement mTLS using Kong in the current setup as this would require the SSL termination at Kong instance.
Below are the reference docs we already followed: