How to use Let's Encrypt with Azure's API Management

Question

I have began developing by microservices architecture utilizing Azure's API management service as the reverse proxy. To provide custom URLs for the API management, you must specify a URL + include a certificate.

I understand that there is a manual way to receive certificates through let's encrypt, but is it possible to automate this for the Azure API Management?

Erik Oppedijk · Accepted Answer · 2020-11-26T21:26:38.557

8

It isn't possible, please vote for the feature request for the API management team.

https://feedback.azure.com/forums/248703-api-management/suggestions/17815891-support-for-let-s-encrypt

Some way to make it work manual:

request certificate
create API to prove to Letsencrypt you are the owner (domain verification)

Some way to create the certificate manual: sudo certbot certonly --manual

edited Nov 26 '20 at 21:26

answered Jan 23 '17 at 15:33

Erik Oppedijk

3,496
4
31
42

3

This would be a very cool addition. We should definitely look into this. – Darrel Miller Jan 23 '17 at 16:55
Could you please add more details about how to obtain a cert manually? – jub0bs Dec 13 '19 at 16:06
1

Here is a blog post on how to create and associate a certificate to an Azure app service using certbot and let's encrypt: https://go.azurecraftsman.com/K47Cs2 – Mselmi Ali Aug 16 '22 at 05:49

score 1 · Answer 2 · answered Jan 17 '21 at 02:44

Key Vault Acmebot appears to do what you're asking. Here is an excerpt from GitHub:

This application automates the issuance and renewal of ACME SSL/TLS certificates. The certificates are stored inside Azure Key Vault. Many Azure services such as Azure App Service, Application Gateway, CDN, etc. are able to import certificates directly from Key Vault.

How to use Let's Encrypt with Azure's API Management

2 Answers2