question

MurakamiKeiichi-9536 avatar image
0 Votes"
MurakamiKeiichi-9536 asked PramodValavala-MSFT answered

How to Create an API Management SSL Certificate?

I am trying to insert an ApplicationGateway in an Azure environment before an API Management, but I get an error setting the certificate.

I don't know about SSL certificate, so I don't know how to deal with it. Could an expert tell me how to prepare a certificate and how to deal with it?

<situation>

1)Environment

VM → APIM → Function →
insert AppGW
VM → AppGW → APIM → Function →.

2)APIM is TLS 1.2 fixed by default and requires a certificate between AppGW and APIM.

3)Both AppGW and APIM can be registered only with CER, and self-created certificates cannot be registered.

4)After exporting an appropriate certificate of a personal PC in the following procedure, the PC was registered in AppGW and APIM. However, when checking the "Backend Health" of AppGW, "anomaly" is displayed in "certificate mismatch".

https://docs.microsoft.com/en-us/azure/application-gateway/c...

5)In 4) above, AppGW is v1sku, and regarding the procedure of v2sku, the root certificate could not be exported with the certificate exported from the above personal PC.

Could you tell me how to create a proper CER certificate to set AppGW → APIM?

azure-api-management
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

PramodValavala-MSFT avatar image
0 Votes"
PramodValavala-MSFT answered

@MurakamiKeiichi-9536 Unless you are using a custom domain, there shouldn't be a problem. If so, you could just remove it at the APIM level and setup TLS termination at the App Gateway level instead.

If you still require a custom domain for your scenario, I find that generating them using the openssl CLI works best. This official doc covers the steps required for the same.


5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.