Thank you for all the votes/feedback. We are unable to give an ETA in this public forum but please be assured this is one of our top priorities at the moment.
Glad to hear that this is being actively developed. It can't come soon enough.
This is a major blocker to implementing on Azure. We have 100's or 1000's of mini-sites with custom sub-domains to distinguish them. Application Gateway is not scalable - dead in the water.
We are planning to support SSL certificates stored in Key Vault secrets for listeners and backend HTTP settings on AppGw
Application Gateways not able to access the certificate from Azure Key Vault is a security problem because of the need to export a PFX.
It also greatly diminishes the value of the higher price of an Azure App Service Certificate (ASC). It is no more secure than going to any other CA at this point who can charge far less for a certificate of the same value.
This is very important. Since we need to use the App Service Certificate at the Application Gateway, we are forced to turn off auto-renew on the certificate and do it manually. This is a noticeable loss of value to the ASC offering. Allowing the Application Gateway to get the certificate from Azure Key Vault would maintain full functionality.
Yes, please make dynamic DNS native for the Azure DNS service