@Neal, Tom For multi-tenant App Services, you can use a custom domain with a private endpoint. Here are the general steps to follow:
- Create a private endpoint: Create a private endpoint for your App Service. You can do this in the Azure portal or using Azure CLI.
- Create a private DNS zone: Create a private DNS zone for your custom domain. You can do this in the Azure portal or using Azure CLI.
- Create DNS records: Create DNS records in the private DNS zone that point to the private IP address of your private endpoint. You can create an A record that points to the private IP address of your private endpoint, and optionally create a CNAME record that points to the A record.
- Link the private DNS zone to your virtual network: Link the private DNS zone to your virtual network that is hosting your private endpoint. You can do this in the Azure portal or using Azure CLI.
- Configure your App Service to use the custom domain: Configure your App Service to use the custom domain by adding the custom domain to the App Service's custom domains list. You can do this in the Azure portal or using Azure CLI.
Once you have completed these steps, you should be able to access your App Service using the custom domain you have configured. The custom domain will resolve to the private IP address of your private endpoint, allowing you to access it privately.