Skip to content

Instantly share code, notes, and snippets.

@vnys

vnys/New public SSL for Equinor subdomains.md

Forked from mimarz/New public SSL for Equinor subdomains.md
Created May 24, 2020 10:46
Show Gist options
  • Save vnys/a8888171e33f69f5754ff508949431dd to your computer and use it in GitHub Desktop.
Save vnys/a8888171e33f69f5754ff508949431dd to your computer and use it in GitHub Desktop.
Download ZIP
Notes
Raw
New public SSL for Equinor subdomains.md

How to add SSL binding for Equinor domains in azure

In this readme we will use the eds.equinor.com domain as an example. Can be done for any sub domain, given you have setup correct DNS/Re-routing.

1. Generate new key & request (needs to be be done only once)

Run in terminal

openssl req -new -newkey rsa:2048 -nodes -keyout eds.equinor.com.key -out request.csr

2. Send request to service

Create a request for Public SSL Certificate in Service Now, here. Send the contents of the request.csr generated in step 1.

3. Create pfx file (needs to be done once a year with new certificate)

Once you have recieved the certificate in step 2 (usually as a .pem or .txt file), use this to generate a .pfx for uploading the information to your portal.azure.com serivce and assign to SSL binding

Run in terminal:

openssl pkcs12 -export -out eds.equinor.com.pfx -inkey eds.equinor.com.key -in certificate.pem

4. Upload pfx to your azure service

Follow the guide here for uploading pfx file and managing SSL bindings thats relevant for your Azure app service.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment