Configuring the Wildcard App Service certificate to auto renew on the Azure Web Apps ?

Question

I have Azure Web Apps with the custom domains already up and running in the production environment service as service.domain.com, the SSL certificate has expired today and I wanted to integrate the Wild Card App Service certificate that I have purchased *.domain.com How can I achieve this and what steps must I take to prevent outage of the Web App? Thank you.

Answer 1

@EnterpriseArchitect If you have already purchased the Wildcard App Service certificate from Azure you can simply select the certificate from the list of available certificates in the "Bindings" section of the "TLS/SSL settings" page for your App Service app.

To do this, follow these steps:

1. Go to the Azure portal and navigate to your App Service app.
2. In the left-hand menu, click on "custom domains" blade
3. Click on "Add binding" and add a new binding for your custom domain.
4. Select the Wildcard App Service certificate from the dropdown menu and click "Add binding".

Note there is not really a risk of downtime since your certificate is already expired.

One final item, if you were using an IP based SSL binding, there is a chance your inbound IP address will likely change over the next week or two (letting IP based SSL expire puts the private IP address back into the pool of available addresses for other customers). If your original binding was SNI SSL, you have nothing to worry about.

Once you have completed these steps, your Wildcard App Service certificate will be bound to your custom domain, and you can proceed with configuring auto-renewal.