Share via

Static web app certificate expired

Zahid Younis 0 Reputation points
2025-06-02T04:07:25.4966667+00:00

Our azure static web app certificate provided by Azure has expired. It hasn't auto-renewed and there doesn't appear to be a way in which we are able to request a renewable. What possible issues could there be and how can we resolve this. Thanks

Azure Static Web Apps
Azure Static Web Apps
An Azure service that provides streamlined full-stack web app development.
1,173 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. TP 124.7K Reputation points Volunteer Moderator
    2025-06-02T04:28:56.1566667+00:00

    Hi,

    Do you have CAA DNS record for your domain? If not I recommend you create it. It should be @ 0 issue "digicert.com" For example, if creating on GoDaddy it would look similar to below:

    User's image

    If you have an existing TXT record for validating your custom domain I recommend you delete that before attempting to delete/re-add your custom domain.

    When you create new TXT validation DNS record, make the TTL a low value, say 5-10 minutes (300 or 600 seconds).

    You remove/re-add your custom domain by navigating to Custom domains blade. After re-adding domain, generating code, creating DNS TXT record, etc., it may take 10-15 minutes for it to say Validated and then some additional time for new certificate to be deployed out to endpoints.

    If you post your domain I could check if CAA record looks correct.

    Please reply back with your results.Please click Accept Answer and upvote if the above was helpful.

    Thanks.

    -TP

    1 person found this answer helpful.
  2. Alex Burlachenko 9,780 Reputation points
    2025-06-02T08:35:06.28+00:00

    Zahid Younis hi,

    microsoft usually handles auto-renewal like a champ, but sometimes things glitch. Check if u’re using a custom domain or the default azure one. if it’s custom, u gotta make sure dns settings are correct. azure needs to verify u own it, otherwise the cert won’t renew.

    if u’re using the default *.azurestaticapps.net domain, the cert should auto-renew no problem. but if it didn’t, try redeploying the app. sometimes that kicks the system into gear. just push a tiny change to ur repo, and azure will rebuild it. the cert might magically fix itself ))

    another thing check the azure portal. go to ur static web app, then look for the "custom domains" tab. if u see any warnings or errors there, that’s ur culprit. microsoft’s got a troubleshooting guide microsoft docs on cert issues. it’s got all the deets on what to do if the cert is stuck in "pending" or whatever.

    if none of that works, u might need to manually delete and re-add the custom domain. sounds scary, but it’s not too bad. just follow the steps in the docs, and u’ll be goood. microsoft’s system is pretty resilient, so even if u mess up, u can usually undo it ))

    and one last thing make sure ur static web app is using the standard tier. the free tier doesn’t include custom domains, so certs won’t auto-renew. microsoft docs on pricing.

    hope that helps )) microsoft’s docs are clutch for this stuff, so def lean on ’em if u get stuck. good luck

    rgds,

    Alex

    and "yes" if you would follow me at Q&A - personaly thx.
P.S. If my answer help to you, please Accept my answer
PPS That is my Answer and not a Comment

    https://ctrlaltdel.blog/

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.