Application gateway should have the capability to store certificate in Azure Key Vault
Currently Application gateway does not store certificate in Azure Key Vault. We believe that Application gateway should have the capability to do that. This will give customer more control over their certificate than saving it in Microsofts encrypted storage.
This capability will soon be supported and will be announced.
John Gilmartin commented
I am pleased to see elsewhere that this is on the roadmap but disappointed to see that it has been so since 2016 and yet still not available. With this item and very similar ones https://feedback.azure.com/forums/217313-networking/suggestions/17205926-integration-with-key-vault-certificates and https://feedback.azure.com/forums/217313-networking/suggestions/31089529-support-ssl-certificates-stored-in-key-vault-secre there is plenty of demand, us included.
We also experience slow performance on Large App (non- WAF) gateway with 2 instances when updating existing certificate. It took about 20 minutes.
It should not take that long to update a single certificate. We used an ARM template.