Where to centralize SSL certificates in Azure?

Horsger

Before using Azure, we had our own certificate (.pfx) issued by an authority. We are using Azure now and would like to be able to use this certificate for all our application services.

I know we can upload them in the "SSL Settings" section of the application service. But the problem is that we have to upload it into every application service we have. If we renew the certificate, we need to go through all the applications and upload the new certificate again and again.

I'm looking for places (like "App Service Certificates") that allow us to upload the certificate once and have the app use it. If we renew the certificate and re-upload it to that centralized location again, it would be ideal for us to not change the application.

In the "App Service Certificates" blade, I see that we can only order certificates, not upload our own. Is it even possible to do it there, or should I look into some custom solution?

By the way, we are using ARM templates to deploy our infrastructure and application services, any hints about SSL in ARM templates would be greatly appreciated.

4c74356b41

You can use keyvault and use the arm template to extract the certificates from it (though they must be in the same subscription). You can use the following code snippet:

{
  "type": "Microsoft.Web/certificates",
  "name": "[parameters('certificateName')]",
  "apiVersion": "2016-03-01",
  "location": "[parameters('location')]",
  "properties": {
    "keyVaultId": "[parameters('existingKeyVaultId')]",
    "keyVaultSecretName": "[parameters('existingKeyVaultSecretName')]"
  }
},

https://github.com/Azure/azure-quickstart-templates/blob/master/webapp-keyvault-ssl/azuredeploy.json

Related

Where to centralize SSL certificates in Azure?

Horsger Before using Azure, we had our own certificate (.pfx) issued by an authority. We are using Azure now and would like to be able to use this certificate for all our application services. I know we can upload them in the "SSL Settings" section of the appl

Where are SSL certificates stored?

iOS Monkey I understand how SSL works, but my question is more about the storage of certificates on the client side. To understand the exact context, let's assume I'm writing my own browser. My rendering part will be done by WebKit and the HTTP request handlin

Where are SSL certificates stored?

iOS Monkey I understand how SSL works, but my question is more about the storage of certificates on the client side. To understand the exact context, let's assume I'm writing my own browser. My rendering part will be done by WebKit and the HTTP request handlin

Where are SSL certificates stored?

iOS Monkey I understand how SSL works, but my question is more about the storage of certificates on the client side. To understand the exact context, let's assume I'm writing my own browser. My rendering part will be done by WebKit and the HTTP request handlin

Where are SSL certificates stored?

iOS Monkey I understand how SSL works, but my question is more about the storage of certificates on the client side. To understand the exact context, let's assume I'm writing my own browser. My rendering part will be done by WebKit and the HTTP request handlin

Azure Traffic Manager and SSL certificates

User 3587624 I have 6 different microservices, each with Azure Traffic Manager set up. The services are running in 3 different regions to improve their performance, but I need to provide certificates for Azure Traffic Manager. I've seen that there are two opti

Azure Application Gateway - Multiple SSL Certificates?

Marcus Is it possible to set up multiple domains to point to the Azure Application Gateway public IP, then upload the SSL certificates for each certificate, which can then be uninstalled on the application gateway? For example, if we were to upload 200 LetsEnc

Azure Application Gateway - Multiple SSL Certificates?

Marcus Is it possible to set up multiple domains to point to the Azure Application Gateway public IP, then upload the SSL certificates for each certificate, which can then be uninstalled on the application gateway? For example, if we were to upload 200 LetsEnc

Azure Application Gateway - Multiple SSL Certificates?

Marcus Is it possible to set up multiple domains to point to the Azure Application Gateway public IP, then upload the SSL certificates for each certificate, which can then be uninstalled on the application gateway? For example, if we were to upload 200 LetsEnc

Multi-Domain SSL Certificates and Windows Azure

connected software I have a .NET website which is currently running under a traditional hosting account. I'm using a multi-domain (5 domains) SSL certificate for domains in different regions, i.e. https://www.mywebsite.com https://www.mywebsite.net https://www

Azure Application Gateway - Multiple SSL Certificates?

Marcus Is it possible to set up multiple domains to point to the Azure Application Gateway public IP, then upload the SSL certificates for each certificate, which can then be uninstalled on the application gateway? For example, if we were to upload 200 LetsEnc

Azure Application Gateway - Multiple SSL Certificates?

Marcus Is it possible to set up multiple domains to point to the Azure Application Gateway public IP, then upload the SSL certificates for each certificate, which can then be uninstalled on the application gateway? For example, if we were to upload 200 LetsEnc

Where can I manage uploaded IAM user SSL certificates in AWS?

steven I uploaded a custom SSL certificate and key to use with CloudFront via the AWS CLI via the AMI user: $ aws iam upload-server-certificate --server-certificate-name my-cert --certificate-body file://https-cert.crt --private-key file://private-key.pem I g

Where are the PEM files used to verify SSL certificates stored?

Mathematician 1975 I am writing a SOAP client application on Ubuntu using OpenSSL and C++. I can't get the code to verify the server certificate even though I know I have a valid certificate. Just to make sure I wanted to check that this is indeed the case, an

Where can I manage uploaded IAM user SSL certificates in AWS?

steven I uploaded a custom SSL certificate and key to use with CloudFront via the AWS CLI via the AMI user: $ aws iam upload-server-certificate --server-certificate-name my-cert --certificate-body file://https-cert.crt --private-key file://private-key.pem I g

Where are the PEM files used to verify SSL certificates stored?

Mathematician 1975 I am writing a SOAP client application on Ubuntu using OpenSSL and C++. I can't get the code to verify the server certificate even though I know I have a valid certificate. Just to make sure I wanted to check that this is indeed the case, an

How to manage (non-SSL) certificates in Azure App Services?

Maxime Rossini We want to switch our ASP.NET MVC application from Azure Cloud Service to Azure App Service (Web App). The application currently uses WIF as its identity framework, and since it's running in the farm configuration, we configure a customization t

How to manage (non-SSL) certificates in Azure App Services?

Maxime Rossini We want to switch our ASP.NET MVC application from Azure Cloud Service to Azure App Service (Web App). The application currently uses WIF as its identity framework, and since it's running in the farm configuration, we configure a customization t

How to manage (non-SSL) certificates in Azure App Services?

Maxime Rossini We want to switch our ASP.NET MVC application from Azure Cloud Service to Azure App Service (Web App). The application currently uses WIF as its identity framework, and since it's running in the farm configuration, we configure a customization t

How to manage (non-SSL) certificates in Azure App Services?

Maxime Rossini We want to switch our ASP.NET MVC application from Azure Cloud Service to Azure App Service (Web App). The application currently uses WIF as its identity framework, and since it's running in the farm configuration, we configure a customization t

How to manage (non-SSL) certificates in Azure App Services?

Maxime Rossini We want to switch our ASP.NET MVC application from Azure Cloud Service to Azure App Service (Web App). The application currently uses WIF as its identity framework, and since it's running in the farm configuration, we configure a customization t

How to manage (non-SSL) certificates in Azure App Services?

Maxime Rossini We want to switch our ASP.NET MVC application from Azure Cloud Service to Azure App Service (Web App). The application currently uses WIF as its identity framework, and since it's running in the farm configuration, we configure a customization t

How to manage (non-SSL) certificates in Azure App Services?

Maxime Rossini We want to switch our ASP.NET MVC application from Azure Cloud Service to Azure App Service (Web App). The application currently uses WIF as its identity framework, and since it's running in the farm configuration, we configure a customization t

How to manage (non-SSL) certificates in Azure App Services?

Maxime Rossini We want to switch our ASP.NET MVC application from Azure Cloud Service to Azure App Service (Web App). The application currently uses WIF as its identity framework, and since it's running in the farm configuration, we configure a customization t

How to manage (non-SSL) certificates in Azure App Services?

Maxime Rossini We want to switch our ASP.NET MVC application from Azure Cloud Service to Azure App Service (Web App). The application currently uses WIF as its identity framework, and since it's running in the farm configuration, we configure a customization t

How to manage (non-SSL) certificates in Azure App Services?

Maxime Rossini We want to switch our ASP.NET MVC application from Azure Cloud Service to Azure App Service (Web App). The application currently uses WIF as its identity framework, and since it's running in the farm configuration, we configure a customization t