How to download the azure app service certificate with full chain & bundle

Tejas Gaikwad 0 Reputation points
2023-03-31T10:47:33.5066667+00:00

Hi Everyone

I have purchased a certificate from azure app service certificate, We have the correct way to upload the certificate from Key vaults and it's accessible in the application gateway but the certificate works only in chrome, firefox and safari does not work, Please help us for this.

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
8,986 questions
{count} votes

1 answer

Sort by: Most helpful
  1. ajkuma 28,036 Reputation points Microsoft Employee Moderator
    2023-04-02T17:57:25.89+00:00

    @Tejas Gaikwad ,

    Based on your issue description I understand App Service Ceriticate doesn’t work on only Safari browser. It can possiblly be an issue related to the certificate chain, as you mentioned.  Does this issue occur on majority of Safari users or only a few, specific to Safari version? What is the exact error message you receive?

     

    I believe you have exported the App Service Certificate file as outlined in this Azure doc ( Portal or CLI method) - Export App Service certificate

    When you purchase a certificate from Azure App Service Certificate, you receive a certificate chain that includes the root certificate, intermediate certificate, and your domain certificate. It is important to ensure that the entire certificate chain is installed correctly.

    To validate/double-check if the certificate chain is installed correctly, you may use an online SSL checker tool like SSL Labs. This tool will analyze your SSL configuration and provide a detailed report that includes information about the certificate chain.

    If the SSL checker tool reports that the certificate chain is incomplete or incorrect, you may need re-export/download the certificate file again. Export App Service certificate ( I understand the issue is isolated to Safari browser only)

    If the certificate chain is installed correctly and you are still experiencing issues with on Safari, it could be related to the SSL protocol or cipher suite. You may try adjusting the SSL protocol and cipher suite settings in your Application Gateway to see if this resolves the issue.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.