Sitecore Managed Cloud – How to add a new custom domain to Azure Front Door


Overview

The current article describes general steps for adding a new custom domain to Azure Front Door. They are:

  1. Adding a valid certificate
  2. Selecting the route you’d like to add a new Custom Domain record to
  3. Adding a new Custom Domain
  4. Updating your DNS with a CNAM record to point to Azure Front Door Endpoint URL address

Each step in detail can be found below. For more details, refer to the following Microsoft's documentation:
https://learn.microsoft.com/en-us/azure/frontdoor/standard-premium/how-to-add-custom-domain

Adding a valid certificate

If you use your own certificate (not Azure Front Door managed) you need to add it first.

  1. In Azure Portal under your resource group open a key vault (create one if needed).
  2. Make sure you have assigned access policy, more details here.
  3. Navigate to Certificates and import a new certificate, more details here.
  4. Open Azure Front Door and navigate to Security -> Secrets.
  5. Click Add certificate and select the imported certificate from the Key vault.

 

Note: We recommend using a certificate that includes a full chain in order to avoid potential issues in the future, more details here.

Selecting the route

  1. In Azure Portal open Front Door.
  2. Navigate to Settings -> Front Door manager.
  3. Select the route.

 

Adding a new Custom Domain

  1. On route update page click Add a new domain.
  2. If you use Azure managed domain, select Azure managed DNS, otherwise select All other DNS services in DNS management.
  3. Fill in the custom domain value.
  4. Select a valid certificate.
  5. Select TLS 1.2 as a minimum TLS version.

 

Updating your DNS with a CNAM record

  1. Navigate to Azure Front Door ->Settings -> Domains.
  2. You should see your domain in the list with DNS state CNAME/alias record is not currently detected.
  3. Create a CNAME record that will point to Azure Front Door Endpoint URL you have associated your custom domain with.
  4. Once record created, verify Azure Front Door -> Domains. Your domain should be green with the Traffic is delivered state.

In case of any issues, contact Sitecore Support.