MicrosoftDocs / azure-docs

Open source documentation of Microsoft Azure
https://docs.microsoft.com/azure
Creative Commons Attribution 4.0 International
10.31k stars 21.5k forks source link

'Latest' as the secret version is not available for BYOC in the CDN endpoint configuration #78798

Closed stephanadler1 closed 1 year ago

stephanadler1 commented 3 years ago

The suggestion to select Latest as the certificate/secret version is not available for BYOC in KeyVault. In my case I've imported the certificate into KeyVault and made another attempt by creating a new certificate (CSR) is created in the KeyVault with the type of CA set to Certificate issued by a non-integrated CA.

I'm using the Azure CDN Premium_verizon SKU.

Note from section Select the certificate for Azure CDN to deploy item 4.

In order for the certificate to be automatically rotated to the latest version when a newer version of the 
certificate is available in your Key Vault, please set the certificate/secret version to 'Latest'. If a specific 
version is selected, you have to re-select the new version manually for certificate rotation. It takes up 
to 24 hours for the new version of the certificate/secret to be deployed.

Document Details

Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

DerekHerman-MSFT commented 3 years ago

Thanks for the feedback! We are currently investigating and will update you shortly.

GitaraniSharma-MSFT commented 3 years ago

@stephanadler1 , We have assigned this issue to the respective product owner for review.

@amitsriva , for your review.

stephanadler1 commented 3 years ago

Some clarification: I've eventually found the limitation being described in FAQ item 7. However, since selecting Latest as the way to automate updates when new certificates arrive is so prominently featured in the notes, its limitations when using BYOC should be described as prominently.

duongau commented 3 years ago

reassign: jessie-jyy

ericwj commented 2 years ago

Better to remove Latest if it just doesn't work. Remove it if fixing it is too much trouble. Its confusing and a waste of time to watch it fail.

image

Image: The pit of failure.

duongau commented 1 year ago

Thank you for you dedication to our documentation.

Unfortunately, we have been unable to review this issue in a timely manner. We sincerely apologize for the delayed response. We are closing this issue. If you feel that the problem persists, please respond to this issue with additional information.

Please continue to provide feedback about the documentation. We appreciate your contributions to our community.

please-close