堆栈内存溢出
  简体   繁体   English

应用程序网关 v2 - 对多个侦听器使用相同的 SSL 证书?

[英]Application Gateway v2 - Use same SSL cert for multiple Listeners?

 原文  2022-09-29 12:48:06       azure/ arm-template/ azure-application-gateway

问题描述

I am trying to setup an Application Gateway v2 sku.我正在尝试设置应用程序网关 v2 sku。 In doing so, i have two ports i want to listen to: 16000 and 16001. These are setup as listeners using SSL. Or at least, i want them to be.这样做时,我有两个要监听的端口:16000 和 16001。这些端口使用 SSL 设置为监听器。或者至少,我希望它们是。

They'll eventually both point to different Backend Pools, that have the same domain ending - ie *.sites.contoso.com So, site1.sites.contoso.com and site2.sites.contoso.com, for example.它们最终都会指向不同的后端池,它们具有相同的域结尾 - 即 *.sites.contoso.com 因此,例如,site1.sites.contoso.com 和 site2.sites.contoso.com。

They both have the same SSL Cert - one for *.sites.contoso.com他们都有相同的 SSL 证书 - 一个用于 *.sites.contoso.com

When setting up the App Gateway, i'm given the error:设置 App Gateway 时,出现错误:

ApplicationGatewayDuplicateSslCertificate ApplicationGatewayDuplicateSslCertificate

Application Gateway cannot have same certificate used across two Ssl Certificate elements.应用程序网关不能跨两个 Ssl 证书元素使用相同的证书。 Certificate for /site1.sites.contoso.com and /site2.sites.contoso.com are same. /site1.sites.contoso.com 和 /site2.sites.contoso.com 的证书相同。

How can i remedy such an error?我该如何补救这样的错误? I considered trying to reference the same certificate, rather than supplying it twice, but that does not work.我考虑过尝试引用相同的证书,而不是提供两次,但这不起作用。 In addition, we're not able to do site-specific certificates.此外,我们无法制作特定于站点的证书。

1 个解决方案

解决方案1
 0 已采纳  2022-10-04 11:02:17

When using an ARM Template, the solution is to reference the same certificate in multiple locations, rather than define the certificate in more than one location.使用 ARM 模板时,解决方案是在多个位置引用相同的证书,而不是在多个位置定义证书。

So, if you have a parameter with certificate reference to a Key Vault, re-use that parameter in each place the Certificate should be used.因此,如果您有一个参数,其中证书引用了 Key Vault,请在每个应该使用证书的地方重新使用该参数。

More information on the topic of using Key Vaut certificates in general can be found here: https://learn.microsoft.com/en-us/azure/application-gateway/key-vault-certs有关一般使用 Key Vaut 证书的主题的更多信息,请访问: https://learn.microsoft.com/en-us/azure/application-gateway/key-vault-certs

Thanks to Scott Mildenburger for the answer.感谢Scott Mildenburger的回答。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Azure 应用网关 v2 - Azure application gateway v2 来自 Azure 应用程序网关 V2 的多个登录提示 - Multiple login prompts from azure application gateway V2 更新 SSL 证书应用程序网关 Azure - Update SSL cert application gateway Azure Azure应用程序网关中的SSL证书错误 - SSL Cert Error in Azure Application Gateway Azure 应用程序网关,如何链接到不同 Azure 订阅上的 SSL 证书? - Azure Application Gateway, how to link to SSL Cert on a different Azure Subscription? 403 禁止 microsoft-azure-application-gateway/v2 - 403 forbidden microsoft-azure-application-gateway/v2 错误 - 403 禁止 - Microsoft-Azure-Application-Gateway/v2 - Error - 403 Forbidden - Microsoft-Azure-Application-Gateway/v2 是否可以有多个通配符子域 azure 应用程序网关侦听器? - Is it possible to have multiple wildcard subdomain azure application gateway listeners? Azure应用程序网关 - 多个SSL证书? - Azure Application Gateway - Multiple SSL Certificates? Azure 应用程序网关未通过 SSL 通过 Azure 应用程序服务证书购买的证书 - Azure Application Gateway not pulling through SSL Cert purchased via Azure App Service Certificates
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM