[英]Import Azure key vault certificate to app service using powershell?
[英]How to import a an azure web app certificate using terraform from an azure key vault
我在 azure 密鑰庫中有一個應用程序服務證書,我想將密鑰庫證書導入到 terraform 中的 web 應用程序中,但我不確定下面示例中的密鑰庫在哪里?
resource "azurerm_app_service_certificate_binding" "example" {
hostname_binding_id = azurerm_app_service_custom_hostname_binding.example.id
certificate_id = azurerm_app_service_managed_certificate.example.id
ssl_state = "SniEnabled"
}
要將現有的密鑰保險庫證書與您的 webapp 綁定,需要使用@json 下面提到的,我們需要首先使用數據調用密鑰保險庫證書,然后與 webapp 綁定。
//First Read the External Key Vault data "azurerm_key_vault" "production_keyvault" { name = "testingkeyvault2022" resource_group_name = "KeyVaultWestEuropeBackend" } // Now Read the Certificate data "azurerm_key_vault_secret" "prod_certificate" { name = "testcert" key_vault_id = data.azurerm_key_vault.production_keyvault.id } // Now bind the webapp to the domain and look for certificate. resource "azurerm_app_service_custom_hostname_binding" "website_app_hostname_bind" { //Website App depends_on = [ azurerm_app_service_certificate.cert, ] hostname = var.websiteurlbind app_service_name = data.azurerm_app_service.read_website_app.name resource_group_name = data.azurerm_resource_group.Terraform.name ssl_state = "SniEnabled" thumbprint = azurerm_app_service_certificate.cert.thumbprint } // Get Certificate from External KeyVault resource "azurerm_app_service_certificate" "cert" { name = "testingcert" resource_group_name = data.azurerm_resource_group.Terraform.name location = data.azurerm_resource_group.Terraform.location pfx_blob = data.azurerm_key_vault_secret.prod_certificate.value }
注意:-由於我的一些訪問問題,我沒有測試過,但它應該可以工作。
請查找此SO THREAD以獲取更多信息。
如果問題仍然存在,請在此GitHub問題處重新打開。
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.