Lets encrypt
This page was created by Hans.karlsen on 2020-07-31. Last edited by Edgar on 2025-01-20.
Lets encrypt issues free shortlived SSL certs - you can set up azure to renew them automatically:
https://www.hanselman.com/blog/SecuringAnAzureAppServiceWebsiteUnderSSLInMinutesWithLetsEncrypt.aspx
Lets encrypt
- Add custom domain to your App
- Add or reuse a storage account and copy the connectionstring for use in step 6 (the lets encrypt extension store data here)
- Azure AD , App reg: xxxxLetsEncrypt
- remember AppId: xxxxxxxx
- add secret - name it login yyyyyyyy
- Resource group running xxx, AccessControl, add permission, contributor , your app xxxLetsEncrypt should be contributor
- go to the app service in azure portal xxx, Extensions, Azure Lets Encrypt, you must add connection strings in setting
- AzureWebJobsDashboard
- AzureWebJobsStorage , both with the same valeu: connection string to your storage account
- configure extension http://YOURSITENAME.scm.azurewebsites.net/LetsEncrypt
- ...follow the guide/next - you get a box with your domain names, select one +request and install, repeat, -> you now have certs
- go back to app and use them on your custom domains, turn on always SSL