How can we improve Azure Networking?

← Networking

Allow Mutual SSL Auth on Application Gateway

At the moment SSL termination is possible with Application Gateway but it doesn't cater for instances where client authentication is required (mutual auth). So if client auth is required, SSL needs to be passed through and terminated on each of the web servers. This increases load across the server farm and makes management of certificates more difficult since all certs need to be maintained on all servers. I believe this function is available with API Management but the additional cost is hard to justify if one doesn't require the other additional features. So having mutual SSL auth capability built into the Application Gateway would be fantastic.

1,452 votes
Vote
Sign in
(thinking…)
Sign in with: Microsoft
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close
You have left! (?) (thinking…)
Brandon shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

78 comments

Sign in
(thinking…)
Sign in with: Microsoft
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Dinesh Kumar commented  ·   ·  Flag as inappropriate

    Guys come on, I feel this should have been in place already. Please consider to add this feature.

  • Shaw, David commented  ·   ·  Flag as inappropriate

    Come on Microsoft, this is painful. AppGw v2 runs on nginx now so implementing mTLS should be a straightforward piece of work!

  • Gopi commented  ·   ·  Flag as inappropriate

    Any update on this? its surprising to see this feature in planned state for years.

  • Anonymous commented  ·   ·  Flag as inappropriate

    Azure Networking Team (Product Manager, Microsoft Azure) commented · November 05, 2015 23:15 · Flag as inappropriate
    Mutual Auth is already in the product backlog based on similar asks from other customers and it is something we will consider in the next planning phase.

  • Mitesh Chauhan commented  ·   ·  Flag as inappropriate

    Hello, any timelines for this fix please ? Workaround I am told is to use App GW v1. This is a step backwards which we want to avoid...

  • Duane Benson commented  ·   ·  Flag as inappropriate

    Please Please Please! Can we at least have an update on this? It's really the achilles heel of Azure and will drive us to other platforms.

  • Carrington Richards commented  ·   ·  Flag as inappropriate

    I was about to based my entire application around your gateway.. then i hit this tread and requirement number 1 isn't satisfied..

    Really basic feature here Ms, would rather not head over to google but looks like you forced me!

  • Marcel commented  ·   ·  Flag as inappropriate

    Hi, this was changed into planned in October 2018. Is there any indication that this is actually being worked on? We really need this feature.... thanks.

  • John Davies commented  ·   ·  Flag as inappropriate

    Any updates please? Looking at the first comment, this was planned in 2015 we are now in 2020......

← Previous 1 3 4

Networking: Application Gateway

Categories

Feedback and Knowledge Base

(thinking…)
Hosted by UserVoice