Learn how to set up SSL for an Azure web application using Let's encrypt, with this guide we have created to make sure you don't miss a thing.
The first step is to create the web app (if you already know how to do it, you can jump to the next one)
To do this, open the Azure portal and find the "All Services" link (Azure Portal Web App Service)
Select App Services within the Web Services.
Create the App
The system will require:
For further details on how to create Web Apps, visit the following link.
The procedure is very simple and Azure's portal provides a step-by-step guide.
The next action is to create the storage for the certificates you will generate with let's encrypt.
Go to Azure Portal a Azure Portal Storage Account. In the "All Services" section, look for "Storage" and select "Storage Accounts".
Important note: Do not use BlobStorage. You must use Standard or V2. 👨💻
For further details on how to create Storage in Azure, you can visit the following link.
Once the storage is created, copy its connection string to use it later. You can find the connection string by selecting your storage service in the "Access Keys" section.
Remember: Do not share these keys with anyone. 👨💻
It's time to register your App, which will connect the different parts.
Search among the Azure services: App Registration
It is important to provide the URL that you will use when registering your DNS domain.
Important note: Once you have created your register, copy the "Application Client ID" since you will need it later. 👨💻
In the App you just registered, select “Certificates and Secrets”
Important: Copy the "secret Value" because the system will require it later. 👨💻
To continue, you should give permissions to the registry in the resource group.
Select your resource group:
Add the registered App as "contributor".
Now, find your web app and add Let's encrypt extension
You have to agree to the terms and conditions. Azure provides a step-by-step guide here.
The next step is to generate your certificates. Previously, it is necessary to configure the Bindings, your DNS, with the registers of the App. Here is a link for more information.
Once you have your custom DNS configured, select the "Let's Encrypt" extension to add to your Web App and click “Browse”.
You will see a screen like the following:
It will ask you to login:
To complete this registration, please note the following:
Azure Portal AAD
In the next step, a selection box will be displayed with the available domains for generating the certificates. By keeping [Ctrl] clicked you can use multiple selection and choose the ones you want. The most common ones are www.[domain] and [domain], without www.
Click on Register and, if everything has gone well, you will see the following confirmation:
To check, go to your Web App, to the "Custom Domains" section.
Done! you can now enjoy Let’s Encrypt certificates and provide extra security to your site visitors.