Cannot create App Service Managed Certificate

dobestar 6 Reputation points
2021-02-25T22:12:54.793+00:00

Hi, I bought a domain in Azure, and mapped it to my web app, and that works fine. However I can't create an app service managed certificate. When I try, it gives me the message:

'Hostname not eligible for App Service managed Certificates creation. Ensure that your domain has an active CNAME record which is set to xxx.azurewebsites.net.

So I created a CNAME record : Name: www, Value xxx.azurewebsites.net

But still the same message. Please tell me what I am doing wrong?

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,035 questions
0 comments No comments
{count} vote

2 answers

Sort by: Most helpful
  1. Grmacjon-MSFT 16,766 Reputation points
    2021-02-26T05:54:34.707+00:00

    Hi @dobestar ,

    Please keep in mind App Service Managed Certificate comes with the following limitations:

    Does not support wildcard certificates.
    Does not support naked domains.
    Is not exportable.
    Is not supported on App Service Environment (ASE)
    Does not support A records. For example, automatic renewal doesn't work with A records.

    Also, Azure may not validate the CNAME domain if is proxied behind Cloudflare

    Please double-check to make sure your CNAME meets the above requirements. Let us know if you have further questions.

    Best,
    Grace

    1 person found this answer helpful.

  2. Grmacjon-MSFT 16,766 Reputation points
    2021-02-27T01:28:48.737+00:00

    Hi @dobestar ,

    Thanks for the clarification. This error shows up when you don’t have the correct CNAME record set in the DNS records. Please double check your DNS records and make sure that whatever subdomain you're trying to create a cert for is pointing to your azurewebsites default hostname.

    Regards,

    Grace