Azure cloud service: Modify the service definition - azure

I have a virtual machine inside cloud service
i need to install ssl certificate on this cloud service
i saw this post about it
https://azure.microsoft.com/en-gb/documentation/articles/cloud-services-configure-ssl-certificate-portal/
but how can i make step 2?
i tried the rest of the steps and made them
but i have no idea about step 2, i don't have a web role
i have vm

Copying the answer by #Bruno Faria on Server Fault (https://serverfault.com/questions/722796/install-ssl-certificate-on-azure-cloud-service-vm/722811#722811) as I am not allowed to mark this question is duplicate of the one asked there:
The tutorial you are following is for web/worker roles cloud services
and not Virtual Machines. Although a VM uses the cloud service layer,
it's not the same thing. All you have to do is to install the
certificate as you would in any windows server machine and add the
Host A register to your DNS provider.
SSL Certificates CSR Creation :: IIS 8 and IIS 8.5
IIS 8 and IIS 8.5 SSL Certificate Installation
Update: In case of Apache (Linux)
OpenSSL CSR Creation for Apache SSL
Apache SSL Certificate Installation
Also, make sure to reserve your public in order to keep it in a event
of shutdown or restart of your virtual machines.
Reserved IP Overview

Related

Does an Azure Virtual machine image maintain SSL configuration?

I have a VM (IIS server) using a SSL certificate and also serves as a reverse proxy.
I plan on using the image from the VM to deploy a virtual machine scale set (with all the IIS and SSL config in place), will this work?
Sysprep, the process which generalizes an image to prepare it for use in a VMSS makes private keys inaccessible on clones, effectively removing the certificates. See: https://serverfault.com/questions/755057/is-there-a-way-to-prevent-sysprep-from-destroying-your-iis-installation
To re-inject your certificates into your image after generalization, you can use a tool such as the Custom Script Extension to reinstall the certs. For example: https://medium.com/charot/custom-script-extention-on-azure-vmss-e010a8c87904

Azure VM SSL certificate

I have backend https://x-x-x.com hosted in azure portal recently that https has been expired and my task is to replace it with new certificate which is in pkg format.
Now I have been looking around inside Azure Portal for app service but I can only find Azure Resource group which has Virtual Machine has Linux(ubuntu) server and load balancer. After reading documentation I found out that I can do it by connecting to VM and install SSL there using docker and HA proxy. But I am not sure how to do it and if I am on right track or not?
My concern is what is the best way to do it and is there any resource which I can follow to complete my task and will it replace my backend https://x-x-x.com certificate?

Connect Azure AppService to Application on a VM over HTTPS

I need to connect our Azure AppServices to an Application running on a Azure VM. This application requires HTTPS and the AppServices have an application installed that will point to the HTTPS Address of the application on the VM.
I tried creating a Self-Signed Certificate on the VM and adding this to SSL of the AppService (exported .pfx) but that failed as I believe it only adds that to the Trusted Personal store/there is no access to the Trusted Root Store on a Azure AppService.
The Azure environment has a .local domain setup. Do I need to get a CA Certificate for my Application on the VM and install these on the Azure AppServices or do I have to a public domain name instead in order to have SSL communication between the Azure AppServices and my HTTPS application running on the Azure VM?
To achieve this scenario you need to place both VM and App service in same VNet and then establish a Point to Site Connection, then by default it will be encrypted.
check the link below for more details:
https://blogs.msdn.microsoft.com/benjaminperkins/2017/02/01/create-a-vnet-and-access-an-azure-vm-hosted-within-it-from-an-app-serivces-web-app/

SSL cert for apache in Azure linux VM

I have created an Ubuntu VM in Azure and I would like to install an SSL Certificate for that VM. This VM runs a django project on apache. What do I do to install the certificate for this VM??
From what I've seen I would have to create a CNAME from an external domain (for which I have issued the SSL) that maps to the DNS name of this VM.
And then what?? Do I follow the process of installing a Cert for apache? Do I have to do anything in the Windows Azure Management Portal or everything is covered by just adding the files to apache and make the appropriate configs??
There is nothing unique about Windows Azure here; you should follow the standard guides for the Linux platform you are using to configuring Apache or whatever web server you are using.
Most SSL certificate companies provide information on configuring Apache/httpd etc. to do this.
For example, GoDaddy provides this resource: http://support.godaddy.com/help/article/5238/installing-an-ssl-certificate-in-apache

How can I setup iis with an ssl cert?

Is there a way to programaticaly install a ssl cert for iis 6 and 7?
Yeah try IIS 6.0 Resource Kit Tools:
http://www.microsoft.com/downloads/details.aspx?FamilyID=56fc92ee-a71a-4c73-b628-ade629c89499&displaylang=en
It includes a tool called: IISCertDeploy.vbs. This is a tool for deploying and for backing up SSL certificates on servers that run IIS 6.0. You can use IISCertDeploy.vbs to deploy the certificate to a local server, to a cluster of servers, or to a remote server. You can also use IISCertDeploy.vbs to back up a certificate by exporting the certificate from a Web site to a Personal Information Exchange (.pfx) file that contains both the private key and the public key.

Resources