Hi @James Comstock Thanks for reaching out. Azure Service Bus supports customer-managed keys for encrypting data at rest in the Premium tier. This feature allows you to use your own key from Azure Key Vault to encrypt the Microsoft-managed key that is used to encrypt the data stored in Azure Storage. You can also audit and revoke access to your key in the key vault.
Reference: https://learn.microsoft.com/en-us/azure/service-bus-messaging/configure-customer-managed-key
However, Azure Service Bus does not support customer-managed SSL certificates for securing data in transit. The service uses its own SSL certificate (CN=servicebus.windows.net) to secure the communication between clients and endpoints. You cannot replace or customize this certificate with your own as it is managed by azure.
Therefore, if your client requires all communication within their business to be encrypted with customer-managed SSL certificates, Azure Service Bus might not be a suitable option for you.
I hope this answer helps, please feel free to reach out incase of further questions.
Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.