ADCS certificate

Prasant Chettri 66 Reputation points

From ADCS certificate it gives me two certificate download options. One is .cer and another p7b. If am planning to generate pfx file to upload on keyvault for app services. Would using .cer to complete the it suffice or it would required p7b ?

Azure Static Web Apps
Azure Static Web Apps
An Azure service that provides streamlined full-stack web app development.
815 questions
{count} votes

1 answer

Sort by: Most helpful
  1. ajkuma 23,731 Reputation points Microsoft Employee

    @Prasant Chettri , To better assist you on this, could you please more details about your requirement/scenario?

    Azure App Services' Authentication / Authorization (EasyAuth) functionality already has the necessary logic to handle key rollover automatically. See this doc.

    If you are looking to add digital security certificates to use in your application code or to secure custom DNS names in Azure App Service.

    See Private certificate requirements.
    Public certificates aren't used to secure custom domains, but you can load them into your code if you need them to access remote resources.

    Based on your requirement, you could leverage The free App Service managed certificate (ASMC) which already satisfy the requirements of App Service. If you choose to upload or import a private certificate to App Service, your certificate must meet the Private certificate requirements. However, the free ASMC comes with a few limitations.

    Ref: Active Directory Certificate Services (ADCS) | key features