How to configure SSL in Azure Application GateWay with intermediate certificate and pfx file?
Question
I have an Azure Application GateWay listening to 443 and redirecting traffic to 3 VM (ubuntu) listening to port 80 with nginx has reverse proxy, which redirect to pm2 node server, this is for Server Side Rendering with Angular Universal
When I create a new Listener in the Application Gateway I upload the pfx file
Now when I browse my sites I get a secure connection, but when I try to share a url in social media like facebook, twitter or linkedin I get an error with the certificate, so images and keywords are not displayed
I found this site that allows me to check SSL configurations ( https://www.sslshopper.com/ssl-checker.html ), the results shows that I´m missing the intermediate certificate
If I install the SSL into a VM without the Application Gateway and redirect clients to that VM, then everything works great.
I have been changing Listeners, Rules and even try SSL Settings which is in preview, but no luck so far
Any idea what am I missing?
Thanks in advance
1 answers
solution1
1 2021-05-19 09:20:12
Hope this helps somebody else. There some ssl providers that do not include the intermediate certificate in the.pfx file, so you have to do this yourself in order to make it work in azure AG. Steps are really simple:
- Install OpenSSL (Yes, even if you buy the SSL)
- Download the files(.key, .crt, .ca.crt) from your provider into a folder
- Execute this command: openssl pkcs12 -export -out [certificate-name].pfx -inkey [certificate-name].key -in [certificate-name].crt -certfile [certificate-name].ca.crt, this will include the intermediate certificate into your.pfx file
- Upload the.pfx file to your application gateway
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.