Connect Azure AppService to Application on a VM over HTTPS - azure

I need to connect our Azure AppServices to an Application running on a Azure VM. This application requires HTTPS and the AppServices have an application installed that will point to the HTTPS Address of the application on the VM.
I tried creating a Self-Signed Certificate on the VM and adding this to SSL of the AppService (exported .pfx) but that failed as I believe it only adds that to the Trusted Personal store/there is no access to the Trusted Root Store on a Azure AppService.
The Azure environment has a .local domain setup. Do I need to get a CA Certificate for my Application on the VM and install these on the Azure AppServices or do I have to a public domain name instead in order to have SSL communication between the Azure AppServices and my HTTPS application running on the Azure VM?

To achieve this scenario you need to place both VM and App service in same VNet and then establish a Point to Site Connection, then by default it will be encrypted.
check the link below for more details:
https://blogs.msdn.microsoft.com/benjaminperkins/2017/02/01/create-a-vnet-and-access-an-azure-vm-hosted-within-it-from-an-app-serivces-web-app/

Related

Azure application gateway with app service - https listener using app service

In Azure I've an application gateway connected with a backend-pool with an Azure app service. This Azure app service accepts http and https traffic.
I added an http listener and created a rule to redirect http traffic to backend pool. This is working fine.
However I would like to do the same with https protocol. But when I'm trying to add the https listener I'm requested to add the pfx certificate. This is expected obviously. But in this case I would like to redirect the https traffic to the Azure App Service which has configured https access, and there is no way (that I know) to export Azure App Service certificate.
Do you know if there is a way to redirect https traffic on an application gateway to an Azure App Service without the certificate "trusting" only on Azure App Service?
Thanks,
Would it help you if you had an exported copy of your app service certificate? If so, you can do so by going to portal.azure.com> app service certs> select your cert> select the export certificate blade > select open key vault secret> select the current version of your cert> select "download as a certificate.

How to set SSL Certificate (FPX) to Microsoft Azure with bind domain (outside azure)

What you need to know?
I am using Azure VM
I bind my Azure to domain that I bought from another provider outside Azure.
I bought SSL Certificate (goDaddy) from Azure
I succeeded verify SSL Certificate
When I exported the certificate, I got FPX file
My Question
How to upload this SSL certificate to (CPanel) my custom domain?

Azure VM SSL certificate

I have backend https://x-x-x.com hosted in azure portal recently that https has been expired and my task is to replace it with new certificate which is in pkg format.
Now I have been looking around inside Azure Portal for app service but I can only find Azure Resource group which has Virtual Machine has Linux(ubuntu) server and load balancer. After reading documentation I found out that I can do it by connecting to VM and install SSL there using docker and HA proxy. But I am not sure how to do it and if I am on right track or not?
My concern is what is the best way to do it and is there any resource which I can follow to complete my task and will it replace my backend https://x-x-x.com certificate?

Azure cloud service: Modify the service definition

I have a virtual machine inside cloud service
i need to install ssl certificate on this cloud service
i saw this post about it
https://azure.microsoft.com/en-gb/documentation/articles/cloud-services-configure-ssl-certificate-portal/
but how can i make step 2?
i tried the rest of the steps and made them
but i have no idea about step 2, i don't have a web role
i have vm
Copying the answer by #Bruno Faria on Server Fault (https://serverfault.com/questions/722796/install-ssl-certificate-on-azure-cloud-service-vm/722811#722811) as I am not allowed to mark this question is duplicate of the one asked there:
The tutorial you are following is for web/worker roles cloud services
and not Virtual Machines. Although a VM uses the cloud service layer,
it's not the same thing. All you have to do is to install the
certificate as you would in any windows server machine and add the
Host A register to your DNS provider.
SSL Certificates CSR Creation :: IIS 8 and IIS 8.5
IIS 8 and IIS 8.5 SSL Certificate Installation
Update: In case of Apache (Linux)
OpenSSL CSR Creation for Apache SSL
Apache SSL Certificate Installation
Also, make sure to reserve your public in order to keep it in a event
of shutdown or restart of your virtual machines.
Reserved IP Overview

Which VM image should I choose on Azure for publishing a web application?

I'm using the "App Service" to host my web application. However my application depends on a 3rd party service which requires a static IP. From my investigation I see that I have two options to obtain a static outbound IP.
1-) App Service Environment, which is an expensive premium service
2-) Creating a Virtual Machine
On Azure portal, when I try to create a virtual machine a large list of VMs is displayed. When I select one of them even more options are displayed. Which one is the best for a middle-size web application? What size would be enough?
You dont need to procure a VM to assign static IP for your Azure Website. You can get a static IP for your Azure Web Application. Steps are given below.
1) Make sure your Web App is in either Basic or Standard mode
2) Configure CNAME in DNS for your Web App
3) Create a self-signed SSL certificate
4) Upload an configure the certificate
for more details https://blogs.msdn.microsoft.com/benjaminperkins/2014/05/05/how-to-get-a-static-ip-address-for-your-microsoft-azure-web-site/

Resources