How to use cloudflare to host Azure domain names

致帮姜 20

I registered a domain name on Azure, but I want to use cloudflare to host it. However, Azure currently cannot modify the default four name servers, so I cannot replace CloudFlare's name servers. Is there any solution?

User's image

TP 76,281 Reputation points

2024-03-19T07:11:03.72+00:00

@致帮姜 Any update?
GitaraniSharma-MSFT 47,421 Reputation points Microsoft Employee

2024-03-19T12:28:21.0866667+00:00
Hello @致帮姜 ,

Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.

Could you please provide some additional information about your setup and requirement?

When you say, "I registered a domain name on Azure", which of the following do you refer:

Did you create a DNS zone in Azure DNS? Refer: https://learn.microsoft.com/en-us/azure/dns/dns-getstarted-portal

Or bought a custom domain from Azure App service? Refer: https://learn.microsoft.com/en-us/azure/app-service/manage-custom-dns-buy-domain

Or added a custom domain name to your Microsoft Entra tenant? Refer: https://learn.microsoft.com/en-us/entra/fundamentals/add-custom-domain

Regards,

Gita
GitaraniSharma-MSFT 47,421 Reputation points Microsoft Employee

2024-03-21T12:46:30.0133333+00:00

@致帮姜 , could you please provide an update on this post?
致帮姜 20 Reputation points

2024-03-21T15:10:57.46+00:00

I gave up. From the official documentation I saw that Azure cannot modify the default nameservers, and I don't know how to use Azure and Cloudflare to co-host domain names.
GitaraniSharma-MSFT 47,421 Reputation points Microsoft Employee

2024-03-21T16:13:26.6066667+00:00

@致帮姜 , could you please provide the above requested information?

From the official documentation I saw that Azure cannot modify the default nameservers, and I don't know how to use Azure and Cloudflare to co-host domain names.

Yes, as documented in the below article,

NS record set contains the names of the Azure DNS name servers assigned to the zone. You can add more name servers to this NS record set, to support cohosting domains with more than one DNS provider. You can also modify the TTL and metadata for this record set. However, removing or modifying the prepopulated Azure DNS name servers isn't allowed. This restriction only applies to the NS record set at the zone apex. Other NS record sets in your zone (as used to delegate child zones) can be created, modified, and deleted without constraint.

Refer: https://learn.microsoft.com/en-us/azure/dns/dns-zones-records#ns-records

Azure DNS supports co-hosting domains with other DNS services. To set up co-hosting, modify the NS records for the domain to point to the name servers of both providers. The name server (NS) records control which providers receive DNS queries for the domain. You can modify these NS records in Azure DNS, in the other provider, and in the parent zone. The parent zone is typically configured via the domain name registrar.

Refer: https://learn.microsoft.com/en-us/azure/dns/dns-faq#use-azure-dns

For example, you can add name servers from Cloudflare in the Name server (additional fields) in the NS record on the Azure portal as below:

The Name Server (NS) updates are done on the domain registrar side. In 'Azure DNS', Microsoft just manages the domain and is not the registrar.

Refer: https://learn.microsoft.com/en-us/azure/dns/dns-faq#does-azure-dns-support-domain-name-registration-

https://learn.microsoft.com/en-us/azure/dns/dns-delegate-domain-azure-dns

Regards,

Gita
TP 76,281 Reputation points

2024-03-21T16:22:36.57+00:00

@致帮姜 Are you not able to transfer the domain to Cloudflare due to still being in the 60 day window? I've had this come up several times in the past with clients and this is how I've handled it.

Microsoft isn't a domain registrar, even though as a convenience they allow you to register a name. Some of the functionality that you can take for granted at domain registrars doesn't exist (or is difficult) if you registered the name via Microsoft.

For above reason I recommend people register their names outside of Azure even if they plan to use Azure DNS. In your case you are wanting to use Cloudflare for DNS so all the more reason to have the name with them as well.
致帮姜 20 Reputation points

2024-03-22T01:13:10+00:00

Yes, it has not been more than 60 days since I registered the domain

致帮姜 20

@GitaraniSharma-MSFT thanks， I added the NS provided by cloudflare, but cloudflare still prompts that it cannot host my domain . I am considering whether to transfer the domain name to cloudflare.

The following is the email sent to me by cloudflare

Update the name servers
Hello

We can't add 【mydomain.com】 to your account because your nameservers (NSs) aren't yet pointing to Cloudflare.Hello We can't add eryizone.com to your account because your nameservers (NSs) aren't yet pointing to Cloudflare. | |Your registrar should list only these two Cloudflare name servers. All other name servers must be removed.

Still need help?
Follow our support guide. If you need more help, reach out to the Cloudflare Community.

The Cloudflare teamYour registrar should list only these two Cloudflare name servers. All other name servers must be removed. Still need help? Follow our support guide. If you need more help, reach out to the Cloudflare Community. The Cloudflare team

TP 76,281 Reputation points

2024-03-25T07:30:21.71+00:00

Yes, it has not been more than 60 days since I registered the domain

@致帮姜 Okay. Please see my answer below for instructions on how to switch your name servers to Cloudflare. If something is unclear please let me know.
GitaraniSharma-MSFT 47,421 Reputation points Microsoft Employee

2024-03-26T12:01:38.0933333+00:00
Hello @致帮姜 ,

Could you please clarify the below before we proceed further?

When you say, "I registered a domain name on Azure", which of the following do you refer:

Did you create a DNS zone in Azure DNS? And do you own that domain name? Refer: https://learn.microsoft.com/en-us/azure/dns/dns-getstarted-portal

Or bought a custom domain from Azure App service? Refer: https://learn.microsoft.com/en-us/azure/app-service/manage-custom-dns-buy-domain

Or added a custom domain name to your Microsoft Entra tenant? Refer: https://learn.microsoft.com/en-us/entra/fundamentals/add-custom-domain

Regards,

Gita

Accepted answer

TP 76,281 Reputation points

2024-03-18T09:50:26.5+00:00
Hi,

Please follow instructions below to switch your name servers to Cloudflare:

A) On your local Windows PC, install latest Az PowerShell module if you do not already have it installed:

https://learn.microsoft.com/en-us/powershell/azure/install-azps-windows?view=azps-11.4.0&tabs=windowspowershell&pivots=windows-psgallery

B) In the portal, find and copy Azure Subscription ID where your domain name is. You will need it for script below. Your Subscription ID can be found by navigating to your Subscription -- Overview tab.

C) Copy/paste below script into Notepad, next replace Subscription ID on top line with your Subscription ID. Once you have done that you may open a PowerShell window and copy/paste the script from Notepad into the PowerShell window to start executing it.

$subscriptionID = "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx" Connect-AzAccount Set-AzContext -Subscription $subscriptionID $token = (Get-AzAccessToken).token $headers = @{"Authorization" = "Bearer $token"} $uri = "https://management.azure.com/subscriptions/$subscriptionID/providers/Microsoft.DomainRegistration/generateSsoRequest?api-version=2022-03-01" $response = Invoke-WebRequest -Method Post -Uri $uri -Headers $headers $json = $response.Content|ConvertFrom-Json $dccUrl = $json.url $dccPostParameterKey = $json.postParameterKey $dccPostParameterValue = $json.postParameterValue $htmlFile = @" <!DOCTYPE html> <html> <head> <title>Domain Control Center</title></head> <body onload="submitSSOForm()"> <form id="ssoForm" method="post" action="$dccUrl"> <input type="hidden" name="$dccPostParameterKey" value='$dccPostParameterValue'> </form> <script> function submitSSOForm() {document.getElementById("ssoForm").submit();} </script> </body> </html> "@ $htmlFile|Out-File ./DomainControlCenter.html Invoke-Item ./DomainControlCenter.html

You will be prompted to sign in to Azure, make sure you use account with enough permission (e.g. Owner). After signing in the script will run for several seconds and then your default browser will open. Please note I only tested using Edge. After the browser opens there will be another brief delay and then Domain Control Center will display your Domain(s):

Click on the context menu (three dots), then click Edit nameservers.

On Edit nameservers screen, click the trash can icon to delete unnecessary lines as needed:

Next edit the remaining lines and set them to your Cloudflare name servers. You may view the name servers you need to enter on your Cloudflare dashboard -- Websites -- <yourdomain>. When finished it should look similar to below, then click Save.

There will be a delay for the change to propagate. You may check periodically in Cloudflare to see if it is active.

Please click Accept Answer and upvote if the above was helpful. If something is unclear please add a comment below.

Thanks.

-TP
Please sign in to rate this answer.

1 person found this answer helpful.
TP 76,281 Reputation points

2024-03-27T05:49:24.1233333+00:00

@致帮姜 My instructions will allow you to modify the default name servers. Should only take a few minutes to complete. Please let me know if you have any questions.

致帮姜 20 Reputation points

2024-03-27T06:57:46.1066667+00:00

Thank you very much, I followed your instructions and successfully modified my nameservers, and now my domain is successfully hosted on cloudflare
Sign in to comment

How to use cloudflare to host Azure domain names

0 additional answers