Install SSL on Microsoft Azure

This tutorial shows how to secure your Azure App Service with a custom SSL certificate from EchoSSL. This requires an App Service plan of Basic tier or higher.

Prerequisites

First, get your certificate files from EchoSSL. You'll also need OpenSSL to convert your files into a single PFX file, which Azure requires.

Step-by-Step Installation

1. Create the PFX File
   Azure needs a .pfx file containing your certificate and private key. Open a command prompt and run this OpenSSL command, which will prompt you to create an export password.

   openssl pkcs12 -export -out your_domain.pfx -inkey private.key -in certificate.crt -certfile ca_bundle.crt

2. Navigate to your App Service in Azure
   Log in to the Azure Portal and go to your App Service resource.
3. Go to TLS/SSL Settings
   In the left navigation menu, find and select TLS/SSL settings.
4. Upload Certificate
   Select the Private Key Certificates (.pfx) tab and click + Upload Certificate.
5. Provide PFX File and Password
   Upload the your_domain.pfx file you created and enter the password for it. Click Upload.
6. Bind the Certificate
   Navigate to the Bindings tab. Click + Add TLS/SSL Binding.
7. Configure the Binding
   In the new pane, select your custom domain. From the "Private Certificate Thumbprint" dropdown, choose the certificate you just uploaded. Select SNI SSL as the TLS/SSL Type. Click Add Binding.

Verify the Installation

After binding, your site should be secure. You can confirm this by visiting your site with https:// or by using our free SSL Certificate Checker tool for a detailed report.