Lets encrypt
No edit summary |
(Automatically adding template at the end of the page.) |
||
| (4 intermediate revisions by 2 users not shown) | |||
| Line 1: | Line 1: | ||
Lets encrypt issues free, shortlived SSL certs. You can set up Azure to renew them automatically: | |||
https://www.hanselman.com/blog/SecuringAnAzureAppServiceWebsiteUnderSSLInMinutesWithLetsEncrypt.aspx | |||
Lets encrypt: | |||
# Add custom domain to your App | # Add a custom domain to your App | ||
# Add or reuse a storage account and copy the connectionstring for use in step 6 (the | # Add or reuse a storage account and copy the connectionstring for use in step 6 (the Lets encrypt extension stores data here) | ||
# Azure AD , App reg: xxxxLetsEncrypt | # Azure AD , App reg: xxxxLetsEncrypt | ||
## | ## Remember AppId: xxxxxxxx | ||
# Add secret - name it login yyyyyyyy | # Add secret - name it login yyyyyyyy | ||
# Resource group running xxx, AccessControl, add permission, contributor , your app xxxLetsEncrypt should be contributor | # Resource group running xxx, AccessControl, add permission, contributor, your app xxxLetsEncrypt should be a contributor | ||
# Go to the app service in | # Go to the app service in Azure portal xxx, Extensions, Azure Lets Encrypt, you must add connection strings in setting | ||
## AzureWebJobsDashboard | ## AzureWebJobsDashboard | ||
## | ## AzureWebJobsStorage, both with the same value: connection string to your storage account | ||
# Configure extension <nowiki>http://YOURSITENAME.scm.azurewebsites.net/LetsEncrypt</nowiki> | # Configure extension <nowiki>http://YOURSITENAME.scm.azurewebsites.net/LetsEncrypt</nowiki> | ||
## ...follow the guide/next - you get a box with your domain names, select one +request and install, repeat, -> you now have certs | ## ...follow the guide/next - you get a box with your domain names, select one +request and install, repeat, -> you now have certs | ||
# Go back to the app and use them on your custom domains, turn on always SSL. | # Go back to the app and use them on your custom domains, turn on always SSL. | ||
[[Category:Security]] | [[Category:Security]] | ||
{{Edited|July|12|2024}} | |||
Latest revision as of 15:36, 10 February 2024
Lets encrypt issues free, shortlived SSL certs. You can set up Azure to renew them automatically:
https://www.hanselman.com/blog/SecuringAnAzureAppServiceWebsiteUnderSSLInMinutesWithLetsEncrypt.aspx
Lets encrypt:
- Add a custom domain to your App
- Add or reuse a storage account and copy the connectionstring for use in step 6 (the Lets encrypt extension stores data here)
- Azure AD , App reg: xxxxLetsEncrypt
- Remember AppId: xxxxxxxx
- Add secret - name it login yyyyyyyy
- Resource group running xxx, AccessControl, add permission, contributor, your app xxxLetsEncrypt should be a contributor
- Go to the app service in Azure portal xxx, Extensions, Azure Lets Encrypt, you must add connection strings in setting
- AzureWebJobsDashboard
- AzureWebJobsStorage, both with the same value: connection string to your storage account
- Configure extension http://YOURSITENAME.scm.azurewebsites.net/LetsEncrypt
- ...follow the guide/next - you get a box with your domain names, select one +request and install, repeat, -> you now have certs
- Go back to the app and use them on your custom domains, turn on always SSL.
This page was edited 99 days ago on 02/10/2024. What links here