We currently have two App Service instances in two different Azure Regions, and we use Traffic Manager for geo-based routing + failover.
We have our custom domain DNS CNAME record pointing to our [x].trafficmanager.net address, and up till now we have uploaded the same .pfx certificate to both App Service instances and bound it.
A couple of days ago, we tried to replace the uploaded pfx with a new App Service Managed Certificate, but were blocked by by the feature limitations when using multiple App Services instances behind Traffic Manager.
Here's what we did:
- On App Service instance 1 (region A), we created a new Managed Certificate for our custom domain hostname, and set up the domain/cert binding. This works as expected.
- On App Service instance 2 (region B):
- There is no way to get the certificate created for instance 1 copied into instance 2
- There is no way to create another Managed Certificate for the same hostname on instance 2
We get the following error message:
"Failed to create App Service Managed Certificate for hostname [customhost] Error Details: The resource '[customhost]' already exists in location '[region A]' in resource group '[resourcegroup]'. A resource with the same name cannot be created in location '[region B]'. Please select a new resource name."
@ajkuma : If there is a way to get this to work, can you please provide the necessary steps to get there?