App services managed certificate with traffic manager and multiple app service instance

Bijesh Roy 1 Reputation point
2020-05-26T20:20:06.563+00:00

We currently have two App Service instances in two different Azure Regions, and we use Traffic Manager for priority routing

We are trying to apply new App Service Managed Certificate, but were blocked by by the feature limitations when using multiple App Services instances behind Traffic Manager.

Here's what we did:

On App Service instance 1 (region A), we created a new Managed Certificate for our custom domain hostname, and set up the domain/cert binding. This works as expected.

On App Service instance 2 (region B):

There is no way to get the certificate created for instance 1 copied into instance 2

There is no way to create another Managed Certificate for the same hostname on instance 2
We get the following error message:
"Failed to create App Service Managed Certificate for hostname [customhost] Error Details: The resource '[customhost]' already exists in location '[region A]' in resource group '[resourcegroup]'. A resource with the same name cannot be created in location '[region B]'. Please select a new resource name."

Azure Traffic Manager
Azure Traffic Manager
An Azure service that is used to route incoming network traffic for high performance and availability.
110 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. TravisCragg-MSFT 5,676 Reputation points Microsoft Employee
    2020-06-10T00:44:18.33+00:00

    This is a limitation with app service managed certificates, and you will only be able to use 1 certificate per web app. The error you got is a limitation on all Azure resources that 2 resources of the same type with the same name cannot exist in the same resource group.

    Here is another post where this scenario is discussed in detail, along with workarounds and solutions.