Custom environment DNS Suffix in Azure Container Apps
Azure Container Apps environment provides a default DNS suffix in the format <UNIQUE_IDENTIFIER>.<REGION_NAME>.azurecontainerapps.dev
. Each container app in the environment generates a domain name based on this DNS suffix. You can configure a custom DNS suffix for your environment.
Note
To configure a custom domain for individual container apps, see Custom domain names and certificates in Azure Container Apps.
If you configure a custom DNS suffix for your environment, traffic to FQDNs (Fully Qualified Domain Names) that use this suffix will resolve to the environment. FQDNs that use this suffix outside of the environment are unreachable.
Add a custom DNS suffix and certificate
Go to your Container Apps environment in the Azure portal
Under the Settings section, select Custom DNS suffix.
In DNS suffix, enter the custom DNS suffix for the environment.
For example, if you enter
example.com
, the container app domain names are in the format<APP_NAME>.example.com
.In a new browser window, go to your domain provider's website and add the DNS records shown in the Domain validation section to your domain.
Record type Host Value Description A *.<DNS_SUFFIX>
Environment inbound IP address Wildcard record configured to the IP address of the environment. TXT asuid.<DNS_SUFFIX>
Validation token TXT record with the value of the validation token (not required for Container Apps environment with internal load balancer). Back in the Custom DNS suffix windows, in Certificate file, browse, and select a certificate for the TLS binding.
Important
You must use an existing wildcard certificate that's valid for the custom DNS suffix you provided.
In Certificate password, enter the password for the certificate.
Select Save.
Once the saved operation is complete, the environment is updated with the custom DNS suffix and TLS certificate.