API Management uses current certificates#
Renew certificates used for custom domain bindings.
When custom domains are configured within an API Management service. A certificate must be assigned to allow traffic to be transmitted using TLS.
Each certificate has an expiry date, after which the certificate is not valid. After expiry, client connections to the API Management service will reject the certificate.
Consider renewing certificates before expiry to prevent service issues.
By default, this rule fails when certificates have less than 30 days remaining before expiry.
To configure this rule:
- Override the
Azure_MinimumCertificateLifetimeconfiguration value with the minimum number of days until expiry.