Lets encrypt
No edit summary
No edit summary
Line 1: Line 1:
Lets encrypt issues free shortlived SSL certs - you can set up azure to renew them automatically:
Let's encrypt issues free shortlived SSL certs - you can set up azure to renew them automatically:


<nowiki>https://www.hanselman.com/blog/SecuringAnAzureAppServiceWebsiteUnderSSLInMinutesWithLetsEncrypt.aspx</nowiki>
<nowiki>https://www.hanselman.com/blog/SecuringAnAzureAppServiceWebsiteUnderSSLInMinutesWithLetsEncrypt.aspx</nowiki>


Lets encrypt
Let's encrypt:


# Add custom domain to your App
# Add custom domain to your App
Line 9: Line 9:
# Azure AD , App reg:  xxxxLetsEncrypt
# Azure AD , App reg:  xxxxLetsEncrypt
## remember AppId: xxxxxxxx
## remember AppId: xxxxxxxx
# add secret - name it login  yyyyyyyy
# Add secret - name it login  yyyyyyyy
# Resource group running xxx, AccessControl, add permission, contributor , your app xxxLetsEncrypt should be contributor
# Resource group running xxx, AccessControl, add permission, contributor , your app xxxLetsEncrypt should be contributor
# go to the app service in azure portal xxx, Extensions, Azure Lets Encrypt, you must add connection strings in setting
# Go to the app service in azure portal xxx, Extensions, Azure Lets Encrypt, you must add connection strings in setting
## AzureWebJobsDashboard
## AzureWebJobsDashboard
## AzureWebJobsStorage  , both with the same valeu: connection string to your storage account
## AzureWebJobsStorage  , both with the same valeu: connection string to your storage account
# configure extension  <nowiki>http://YOURSITENAME.scm.azurewebsites.net/LetsEncrypt</nowiki>
# Configure extension  <nowiki>http://YOURSITENAME.scm.azurewebsites.net/LetsEncrypt</nowiki>
## ...follow the guide/next - you get a box with your domain names, select one +request and install, repeat, ->  you now have certs
## ...follow the guide/next - you get a box with your domain names, select one +request and install, repeat, ->  you now have certs
# go back to app and use them on your custom domains, turn on always SSL
# Go back to the app and use them on your custom domains, turn on always SSL.
[[Category:Security]]
[[Category:Security]]

Revision as of 08:17, 21 March 2023

Let's encrypt issues free shortlived SSL certs - you can set up azure to renew them automatically:

https://www.hanselman.com/blog/SecuringAnAzureAppServiceWebsiteUnderSSLInMinutesWithLetsEncrypt.aspx

Let's encrypt:

  1. Add custom domain to your App
  2. Add or reuse a storage account and copy the connectionstring for use in step 6 (the lets encrypt extension store data here)
  3. Azure AD , App reg:  xxxxLetsEncrypt
    1. remember AppId: xxxxxxxx
  4. Add secret - name it login  yyyyyyyy
  5. Resource group running xxx, AccessControl, add permission, contributor , your app xxxLetsEncrypt should be contributor
  6. Go to the app service in azure portal xxx, Extensions, Azure Lets Encrypt, you must add connection strings in setting
    1. AzureWebJobsDashboard
    2. AzureWebJobsStorage  , both with the same valeu: connection string to your storage account
  7. Configure extension  http://YOURSITENAME.scm.azurewebsites.net/LetsEncrypt
    1. ...follow the guide/next - you get a box with your domain names, select one +request and install, repeat, ->  you now have certs
  8. Go back to the app and use them on your custom domains, turn on always SSL.
This page was edited more than 11 months ago on 02/10/2024. What links here
Retrieved from "https://newwikicopy.mdriven.net/index.php?title=Documentation:Lets_encrypt&oldid=9085"

© MDRIVEN . All Rights Reserved

Glossary API Docs
MDriven World | Portal | Blog | YouTube | StackOverflow | Facebook

© MDRIVEN . All Rights Reserved