question

ShawnaJacobsonSims-9464 avatar image
0 Votes"
ShawnaJacobsonSims-9464 asked brtrach-MSFT answered

Certificate Discovery in Azure

My company is looking for a tool that will be able to discovery certificates within an existing Azure environment (as well as our on-prem infrastructure) we're looking to be able to discovery certificates attached to App Gateways, App Services, Key Vaults, Automation Accounts and VNGs to start. Is there a tool that will be able to query those resources for certs as well as traditional IaaS instances?

azure-webapps-ssl-certificates
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

brtrach-MSFT avatar image
0 Votes"
brtrach-MSFT answered

@ShawnaJacobsonSims-9464 Since it appears nobody from the community has any suggestions, let's see if we can assist you.

After review, it does not appear that there is a great catch all tool available to scan your Azure subscription and list all the certificates.

You likely will have to do this via a mixture of 1st party rest api calls, such as outlined in this document for Azure App Services.

For other services, such as App Gateway, you will likely need to explore 3rd party methods, such as this PowerShell script listed in this 3rd party blog.

We realize this might not be the solution you were hoping to find but encourage you to make a feature request here so that a 1st party tool might be created to handle this in the future.

Please let us know if you have any further questions or concerns.


5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.