[BUG] After successfully creating a custom domain name for API Management, it deletes itself

Question

[BUG] After successfully creating a custom domain name for API Management, it deletes itself

Morris Kurz 20

Hello everyone,

I want to create a custom domain name for my Consumption tier API Management instance. After adding the hostname for type Gateway with a managed certificate, I setup my DNS record (CNAME) to point to the APIM URL and a TXT record to verify my ownership of the domain. After saving everything in the API Management instance, I get the notification that the hostnames were updates successfully. But the newly added domain removes itself in the portal after a few seconds, ending in the initial state of the default APIM URL. I validated that the URL does not work by doing a POST request, ending in a 404 error. This persists even after three days of waiting, in case the configuration takes some time to load to every server.

TL;DR The portal notified me of the successful creation of the hostname, but the hostname wasn't created and can't be used. User's image

User's image

MuthuKumaranMurugaachari-MSFT 22,441 Reputation points Moderator

2023-11-22T12:20:12.58+00:00

Morris Kurz Thanks for posting your question in Microsoft Q&A. This requires investigation of the backend logs of APIM instance and it would be better if you can create a support ticket with azure support team. Do you have a support plan with us? If not, send an email to azcommunity@microsoft.com referencing this thread with your subscription ID (not name), APIM details along with subject as "Attn: Muthu".

I can assist you offline in enabling a one-time free technical support ticket.
Morris Kurz 20 Reputation points

2023-11-22T14:39:20.0833333+00:00

Thank you so much Muthu for helping me via email. For others having a similar issue: There was an issue with the managed certificate being issued by DigiCert. It was not explicitly allowed in our DNS entries. By adding a CAA entry with DigiCert, we were able to setup the custom domain name. Thanks Muthu!

Answer accepted by question author

1 additional answer

Your answer

MuthuKumaranMurugaachari-MSFT 22,441 Reputation points Moderator

2023-11-22T12:20:12.58+00:00

Morris Kurz Thanks for posting your question in Microsoft Q&A. This requires investigation of the backend logs of APIM instance and it would be better if you can create a support ticket with azure support team. Do you have a support plan with us? If not, send an email to azcommunity@microsoft.com referencing this thread with your subscription ID (not name), APIM details along with subject as "Attn: Muthu".

I can assist you offline in enabling a one-time free technical support ticket.
Morris Kurz 20 Reputation points

2023-11-22T14:39:20.0833333+00:00

Thank you so much Muthu for helping me via email. For others having a similar issue: There was an issue with the managed certificate being issued by DigiCert. It was not explicitly allowed in our DNS entries. By adding a CAA entry with DigiCert, we were able to setup the custom domain name. Thanks Muthu!

Answer 1

Morris Kurz Sure, you are welcome. Glad it got resolved. Microsoft Q&A has policy: Accept an answer that question authors cannot accept their own answers and hence I am posting your answer in case you like to accept so that it can benefit others facing similar issues.

Resolution:

We found that adding managed certificate failed with an error due to presence of a CAA record that does not authorize Digicert. Morris Kurz followed the steps described in DNS configuration and created a CAA domain record with the value: 0 issue digicert.com to resolve the issue.

User's image

I hope this helps.

Answer 2

Deleted

This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.

Comments have been turned off. Learn more

Share via

[BUG] After successfully creating a custom domain name for API Management, it deletes itself

1 additional answer

Your answer