Azure - SSL & Traffic Manager - Multiple regions
I'm expanding my Azure SSL web app across multiple regions, and thus need to setup a traffic manager.
My current configuration works, and is:
SSL cert: www.bloop.com
Web App: uk-bloop.azurewebsites.net (Custom domain assigned)
Registrar (Go Daddy):
CNAME awverify awverify.uk-bloop.azurewebsites.net
CNAME awverify.www awverify.uk-bloop.azurewebsites.net
I can visit https://www.bloop.com, and everything works fine.
I now wish to add a USA region app: usa-bloop.azurewebsites.net into the mix.
I have added a traffic manager, and assigned the two endpoints, and it all seems to be working correctly:
bloop.trafficmanager.net
-> usa-bloop.azurewebsites.net
-> uk-bloop.azurewebsites.net
And that all seems great - the problem, is how can I assign a custom domain (& SSL Cert) to usa-bloop.azurewebsites.net? I cannot verify it, as the CNAME points to the uk region, and I cannot add two CNAME records, with the same name. If I point the CNAME to the traffic manager DNS, will Azure 'pass on' the verification to both the individual applications?
i.e:
Registrar (Go Daddy):
CNAME awverify awverify.bloop.trafficmanager.net
CNAME awverify.www awverify.bloop.trafficmanager.net
Minimum stuff required:
(you don't even need the awverify if CNAME is good enough - awverify is just for A)
Traffic Manager Endpoints:
Make sure your DNS configuration looks something like this (using tm.snobu.org instead of www.bloop.com):
$ dig tm.snobu.org
tm.snobu.org. 3397 IN CNAME simpletm.trafficmanager.net.
simpletm.trafficmanager.net. 97 IN CNAME app-eastus.azurewebsites.net.
app-eastus.azurewebsites.net. 1086 IN CNAME waws-prod-blu-039.vip.azurewebsites.windows.net.
waws-prod-blu-039.vip.azurewebsites.windows.net. 54 IN CNAME waws-prod-blu-039.cloudapp.net.
waws-prod-blu-039.cloudapp.net. 14 IN A 23.96.103.159
Set (the same) custom domain for both Web Apps:
Upload the SSL cert (in my case for tm.snobu.org) and set bindings for both Web Apps.
That's it.
The request shown above is not made over HTTPS because i don't have a cert handy, but you get the point.
- How to set up a Low Disk Space alert with the new Azure Monitor agent to trigger when a specific disk drive is low on free space?
- Azure Cosmos DB - Understanding Partition Key
- Get the permissions of users with respect to the repositories via the API of ADO
- Azure graph api to search groups whose displayName contains a specific term
- Azure Functions with VS Code and Python: ModuleNotFoundError: No module named 'azure.storage'
- Azure APIM - VNET injection vs inbound private endpoint, what is a difference?
- My mern project is not running in azure web app
- Split multiple tables from a single sheet in excel using data flows
- How to reduce your outbound ip address list for azure web app to add ip address to Flexible PostregSQL server firewall
- Not able to send localized push notification from Azure Notification Hub after migrating to FCMv1 from FCM Legacy API
- Production slot not using Production as ASPNETCORE_ENVIRONMENT variable
- Azure monitor open telemetry python package raising exception when python app deployed on Azure
- Azure Document Intelligence - RequestFailedException: 'Resource not found Status: 404 (Not Found)
- Parameterize runOnStartup in function.json
- Trouble Passing Boolean Values in Azure Data Factory JSON Template
- Managed Identity for Cosmos DB: "Local Authorization is disabled. Use an AAD token to authorize all requests"
- SFTP connectivity via Jsch fails with "Auth fail for methods 'publickey'"
- How can I add email recipients to a Graph API request programmatically?
- Getting an UnsupportedClassVersionError after updating Java 17 to Java 21
- Issue during update azure vmss trough rest api using curl
- How can I define compile time constants in bicep configuration language?
- How to redact Indian Aadhaar Number, Brazilian CPF number or any other such PII using azure language service
- Timezone error creating SQL instance in Azure using Terraform
- Does Azure's EntraID support dynamic custom claims?
- Can't provide NuGet package source credentials to Azure Function
- How can I use Terraform to run a script to initialise the database on a newly-created Azure mssql_virtual_machine?
- Creating External table in Azure SQL Database using ADLS2 Datasource
- Issue uploading files to S3 from Django in Docker
- Azure DevOps pipeline continues to run despite removing schedule
- Azure Active Directory App service Principal create new client secret