There are only 3 load balancers actually needed, but i created 2 application load balancers manually since our tooling doesn't currently support creating those. That's why there are 5 there. I only initially swapped over the master LB since the web console uses web sockets and it was causing an issue.

As per Jesse Sarnovsky response to that email thread (Community cluster - preparation for testing), this isn't how OSD clusters are configured, instead they use the classic ELBs with the TCP protocol and proxy mode enabled. Ideally we would have these work the same way as OSD, but this method would require us to have a real SSL cert on the master nodes (there currently isn't) as you would no longer be using the ACM cert that is currently being used by the LB.

IMO I'd just use the application ELBs if it works, unless Jesse Sarnovsky David Kirwan knows of any reason why this wouldn't work? Jesse Sarnovsky You mentioned something about supporting multiple certificates in that mail thread.