Why do .azurewebsites.net certificates support less secure hashing algorithms and can this be changed

Matthew Greaves 40 Reputation points
2024-06-19T07:50:20.9066667+00:00

Several of our websites/applications hosted in Azure have been left using the default .azurewebsites.net certificates. Our security team recently flagged these certificates as having weak hashing algorithms enabled. I know we could use our own certs, but that would mean republishing a new URL to users and making changes in other applications, which I would like to avoid if possible. I was wondering if it is possible to remove/turn off some of the weaker algorithms on the .azurewebsites.net certificates.

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,325 questions
0 comments No comments
{count} votes

Accepted answer
  1. akinbade abiola 8,215 Reputation points
    2024-06-19T08:05:12.8066667+00:00

    Hello Matthew Greaves,

    Thanks for your question.

    Unfortunately, you cannot directly modify the default certificates on .azurewebsites.net domains.

    You could try to Map an existing custom DNS name to Azure App Service so as not to change the core url.

    Regards,

    Abiola

    You can mark it 'Accept Answer' and upvote if this helped.


0 additional answers

Sort by: Most helpful