I was able to setup custom apex domain using Alias pointing to Azure CDN.
Also was able to successfully add certificates that I purchased from a certified CA(externally) and imported that in to the key vault and linked to the CDN endpoint.
I also added a rule to redirect http to https.
Here is what works:<domain name>.xyz successfully redirects to https://<domain name>.xyz
Here is what doesn't work:www.<domain name>.xyz gives "our services aren't available right now. We're working to restore all services as soon as possible"https://www.<domain name>.xyz gives certificate warning
How can I get www work as well?
Here is my Azure DNS settings
