Web App integration with Key Vault

Last updated: 12/11/2016

Deploy a Web App certificate from Key Vault secret and use it for creating SSL binding

This Azure Resource Manager (ARM) template was created by a member of the community and not by Microsoft. Each ARM template is licensed to you under a licence agreement by its owner, not Microsoft. Microsoft is not responsible for ARM templates provided and licensed by community members and does not screen for security, compatibility or performance. Community ARM templates are not supported under any Microsoft support programme or service, and are made available AS IS without warranty of any kind.

Parameters

Parameter Name Description
existingServerFarmId Existing App Service Plan resource id that contains the App Service being updated
certificateName User friendly certificate resource name
existingKeyVaultId Existing Key Vault resource Id with an access policy to allow Microsoft.Web RP to read Key Vault secrets (Checkout README.md for more information)
existingKeyVaultSecretName Key Vault Secret that contains a PFX certificate
existingWebAppName Existing App name to use for creating SSL binding. This App should have the hostname assigned as a custom domain
hostname Custom hostname for creating SSL binding. This hostname should already be assigned to the Web App
existingAppLocation App location

Use the template

PowerShell

New-AzureRmResourceGroupDeployment -Name <deployment-name> -ResourceGroupName <resource-group-name> -TemplateUri https://raw.githubusercontent.com/azure/azure-quickstart-templates/master/201-web-app-certificate-from-key-vault/azuredeploy.json
Installing and configuring Azure PowerShell

Command line

azure config mode arm
azure group deployment create <my-resource-group> <my-deployment-name> --template-uri https://raw.githubusercontent.com/azure/azure-quickstart-templates/master/201-web-app-certificate-from-key-vault/azuredeploy.json
Installing and configuring the Azure cross-platform command-line interface