Create App Service Managed Certificate with FrontDoor CNAME

Praemon 126 Reputation points

I have a linux Web App backend attached to a FrontDoor instance with a custom domain, but I'm unable to create a managed certificate on the web app due to the error: "Hostname not eligible for App Service Managed Certificates creation."

How do I complete this step if the CNAME record is pointing to FrontDoor? I cannot temporarily change the CNAME record as it's a production website. Adding a "awverify" TXT record works for adding the custom domain to the web app, but not the certificate creation.

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
4,937 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. mike m ( 81 Reputation points

    Unfortunately it does not seem this is possible.

    this is from another thread i found here:

    App Service Managed Certificates can only be used with URL's that are setup as DNS CNAME records. "" has been setup as an A record, not CNAME. You will need to delete the A record and create a CNAME record pointing to the app service DNS name.

    Is there a possibility you can create the cert elsewhere and just use a regular SSL Cert?


    0 comments No comments

  2. xequence 6 Reputation points

    azure cloud shell powershell command Set-AzFrontDoor -Name yourfrontdoorname -ResourceGroupName yourResourceGroup -DisableCertificateNameCheck

    More commands for your convenience,

    0 comments No comments