How can I set up a SSL certificate in my VM while using it as endpoint for a failover in cloud service provider

Ken Nagata 1 Reputation point
2020-06-01T13:16:52.36+00:00

Hello,
I have been looking for an answer but I couldnt find a specific answer for my problem.
I am currently using a domain (ex: domain.com ) which is used by AWS. I used a route 53 to make a failover to my VM in azure using a subdomain (ex: subdomain.domain.com) . It works perfectly, however I havent been able to create/or find out how to set up a correct https certificate . Even when the domain.com has a ssl certificate it doesnt work with the subdomain (it is already registered in AWS *.domain.com and its working).

is it there any way to set up the certificate in this way ? or I need to actually buy a new domain from a provider?

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,106 questions

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Ronen Ariely 15,096 Reputation points
    2020-06-01T16:21:17.91+00:00

    Great question @Ken Nagata

    By the way, exactly yesterday I configured my personal site to use SSL so it is fresh 🙄

    is it there any way to set up the certificate in this way ? or I need to actually buy a new domain from a provider?

    The short answer is yes, but I have no idea what AWS offers.

    You can use a single SSL certificate for all subdomain using Wildcard configuration of the certificate.

    In this case you will need to copy the certificate to all servers which might be a bit complex if you are no familiar with the topic. For most cases if you have only few sub-domains then you are probably better off simply purchasing separate certificates.

    it is already registered in AWS *.domain.com and its working

    I don't understand if this is working then what is not working?!?

    I am not familiar with the procedure of configure SSL certificate at AWS.

    I can tell you that you can get a free certificate from letsencrypt, which is nonprofit free, automated, and open certificate authority (CA), This is is the service which I use usually.

    There are a large number of ACME clients available which support letsencrypt certification including in the Azure (check the link).

    0 comments
  2. Ken Nagata 1 Reputation point
    2020-06-02T02:07:32.713+00:00

    Thanks for your reply!
    well, at least I know that is possible.
    I tried to look for what you talk about letsencrypt but not help to know where or what to do exactly.
    All the documents at the end needs a domain to actually continue the tutorial or something.
    The problem is that I only have the VM without domain , the domain is just failover from the aws to the azure vm.
    So, I only have my public IP address and a DNS name

    **also letsencrypt is only for non profit websites, which is not a good certification for business.