Certification configuration: I'm not able to verify my domain

Stefan Brieger 0 Reputation points
2024-05-30T11:31:18.76+00:00

Hello,

after developing a Blazor Web App I tried to connect the app with my own domain.

So I have to verify my domain to bind the certificate to my app. First step (import certificate to key fault) seems to work (step is checked). But I do not see the certificate when I take a look into the key vault. Is this the normal behaviour?

Next step (verify domain ownership) failed. I added the DNS record, but the check fails (found HTTP error 400 in JSON response).

Is there something missing or wrong?

Blazor
Blazor
A free and open-source web framework that enables developers to create web apps using C# and HTML being developed by Microsoft.
1,460 questions
Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,216 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Andriy Bilous 11,011 Reputation points MVP
    2024-05-31T04:34:39.22+00:00

    Hello Stefan Brieger

    HTTP error 400 could be due to incorrect URL syntax, DNS lookup issues, or browser cache problems. Ensure the TXT record is correctly formatted and includes the “MS=” part
    https://learn.microsoft.com/en-us/answers/questions/810312/unable-to-verify-custom-domain-in-azure-txt-record

    You need to enable Managed Identity on your App Service and assign permissions into the Key Vault to this App Service Manages Identity.
    https://stackoverflow.com/questions/68017270/imported-tls-certificate-does-not-show-up-in-app-service

    Double-check the correct DNS records and take a look into App Service diagnostics.
    https://learn.microsoft.com/en-us/answers/questions/699662/unable-to-verify-domain-name-in-azure-app-services