This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 11%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDK%3C/text%3E%3C/svg%3E)
When I'm trying to configure the WAF to reach my RDS Gateway, I'm getting the following error "The Common Name (CN) of the backend certificate does not match the host header entered in the health probe configuration. Either change the probe configuration or add a valid certificate on the backend".
The cert I installed on the gateway is a wildcard cert for my external domain, and have updated the external DNS to the Azure public IP. The external domain name differs from the internal name but surely this is a common situation. Also to confirm the wildcard cert installed is definitely the cert I wish to use. Its an externally signed cert for my external domain.
Also to mention I haven't configured any health probe so I presume the health probe mentioned is created by default with the gateway/waf. I have not changed any config on this.
The issue and how to get this fixed is described here:
Troubleshoot backend health issues in Application Gateway
Maybe this is helpful.
Regards
Andreas Baumgarten
--please don't forget to Accept as answer if the reply is helpful--