Create App Service Managed Certificate with FrontDoor CNAME

Praemon 131 Reputation points
2020-01-01T08:35:24.363+00:00

I have a linux Web App backend attached to a FrontDoor instance with a custom domain, but I'm unable to create a managed certificate on the web app due to the error: "Hostname not eligible for App Service Managed Certificates creation."

How do I complete this step if the CNAME record is pointing to FrontDoor? I cannot temporarily change the CNAME record as it's a production website. Adding a "awverify" TXT record works for adding the custom domain to the web app, but not the certificate creation.

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
6,789 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Michael C. McKinnon 81 Reputation points
    2020-01-01T19:40:09.753+00:00

    Unfortunately it does not seem this is possible.

    this is from another thread i found here: https://serverfault.com/questions/997025/hostname-not-eligible-for-app-service-managed-certificates-creation

    App Service Managed Certificates can only be used with URL's that are setup as DNS CNAME records. "www.stratus-integration.com" has been setup as an A record, not CNAME. You will need to delete the A record and create a CNAME record pointing to the app service DNS name.

    Is there a possibility you can create the cert elsewhere and just use a regular SSL Cert?

    HTH

    0 comments
  2. xequence 6 Reputation points
    2020-01-02T05:36:09.623+00:00

    azure cloud shell powershell command Set-AzFrontDoor -Name yourfrontdoorname -ResourceGroupName yourResourceGroup -DisableCertificateNameCheck

    More commands for your convenience, https://learn.microsoft.com/en-us/powershell/module/az.frontdoor/set-azfrontdoor?view=azps-3.2.0

    0 comments