Can not create a Managed Certificate in App Service

Martin Brugger 0 Reputation points
2024-09-24T09:06:47.7466667+00:00

Hi,

currently I cannot create a managed certificate for my App Service:

I get the following error:

Error adding managed certificate: Pending managed certificate failed: Certificate creation was rejected by CA for canonical name crew.my.domain: If retrying does not help, please contact support for assistance. Refer to the documentations for more info: https://go.microsoft.com/fwlink/?linkid=2158627.

As it had worked before I'm not shure whats the problem

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,784 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. SnehaAgrawal-MSFT 21,661 Reputation points
    2024-09-24T10:09:40.18+00:00

    @Martin Brugger Thanks for asking question! Could you please Go to Azure portal, open your App and check from diagnose and solve for managed certificate to see error details-User's image

    Also, please make sure that the A record of the domain is mapped properly to the IP address of the web app. Also, make sure your web app is accessible from the public network and does not have any IP restrictions set up. 

    The free ASMC has some limitations, please take a look. Reference doc.

    The free App Service Managed Certificate (ASMC) comes with the following limitations, kindly review or validate for your domain:

    • Does not support wildcard certificates.

    • Does not support usage as a client certificate by using certificate thumbprint.

    • Does not support private DNS.

    • Only supports alphanumeric characters, dashes (-), and periods (.).

    Free certificates are issued by DigiCert. For some domains, you must explicitly allow DigiCert as a certificate issuer by creating a CAA domain record with the value: 0 issue digicert.com.

    If the issue persists, suggest you create raise support ticket. Please let us know if issue remains, happy to assist.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.