question

vbarbarino avatar image
0 Votes"
vbarbarino asked vbarbarino commented

Secure cluster with App Gateway SSL certificate

We have our cluster sitting behind an application gateway. We have a certificate from digicert for SSL on the app gateway. In order to not have to get another cert from digicert for the cluster would it be ok to use the app gateway certificate to secure the cluster? we are not doing SSL on the cluster other than for explorer but that's through the app gateway, otherwise we have the gateway offload SSL.

azure-service-fabric
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

If the response did help in answering your query, please 'Accept as answer', so that it helps other users visiting the forum.

0 Votes 0 ·
vbarbarino avatar image vbarbarino karishmatiwari-msft ·

@karishmatiwari-msft @jakaruna-MSFT I'm waiting to hear from jakaruna on my follow up question to mark this answered.

0 Votes 0 ·

1 Answer

jakaruna-MSFT avatar image
0 Votes"
jakaruna-MSFT answered festivus-1637 commented

You can do this but the traffic between the app gateway and service fabric will go through http protocol
(not secured)

Also make sure you are not exposing the service fabric service publicly.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

When you say the service fabric service, are you referring to port 19000? Doesn't that need to be available for the portal to show information about the cluster?

0 Votes 0 ·