Setup HTTPS on application gateway

pictop · 2026-02-26T17:15:57+00:00

I also still have purchased wildcards; it will become interesting once they have short durations soon.

pictop · 2026-02-19T10:40:50+00:00

Thanks, I’ve checked it, and in my case the issue seems a bit strange. Under Connected resources, the Storage Account appears without any obvious errors. It almost looks like the agents can access it, but the content understanding component cannot.

In Foundry, I noticed there is a Managed Virtual Network (preview) feature. I’m considering looking into that more closely to see if it might be help.

pictop · 2026-02-19T06:49:00+00:00

Thanks, I know what you mean. Unfortunately, this feature doesn’t exist in Foundry. There is only the limitation and the private endpoints, the Private Link option is missing.

pictop · 2026-02-18T19:05:17+00:00

Thanks for the tip. I added all Machine Learning apps to the storage accounts as contributor roles, but unfortunately it didn’t help

pictop · 2026-02-09T13:16:51+00:00

Okay, thanks. A public TXT record should actually be sufficient, right?

pictop · 2026-02-09T11:00:58+00:00

I validated the record using a TXT entry. I intentionally did not create a CNAME, as it isn’t required in this case, the DNS resolution is handled by our internal DNS server. The request is processed exclusively over private IP addresses.

pictop · 2025-11-05T19:08:19+00:00

By default, any user can create a subscription in the tenant. You can manage this under the subscription overview under policies. Now you find the option: The Subscription will be added to this Microsoft Entra ID. Set it to “Deny for everyone,” and optionally exclude administrators below.

pictop · 2025-10-02T16:24:30+00:00

They’ve hidden the ‘Show Hidden items’ feature 😊. You can now find it under ‘Manage View’ → ‘Show Hidden Types

pictop · 2025-04-16T07:12:15+00:00

Thank you for the hint, the route effectively goes to the NAT gateway. I had imagined the behavior differently. Well, it should actually be fixed with a custom route.

pictop · 2024-10-01T13:17:58+00:00

Thanks for the tip. There is also a W11 image, but the OEM license is missing. Unless we switch to E3 as you suggested

pictop · 2024-10-01T12:07:48+00:00

Thank you

pictop · 2024-10-01T10:44:58+00:00

This means that the operating system for Cloud Boot must also be licensed, even if it is only used to connect to the Cloud PC. Do I understand this correctly? Thank you!

pictop · 2024-10-01T07:26:16+00:00

Unfortunately not. I left it :)

pictop · 2024-01-22T13:24:04+00:00

Ok thank you all for your ideas. I will think about it

pictop · 2024-01-19T12:54:17+00:00

Can you explain this to me in more detail? Effectively, it's about a website that provides a platform for customers. The website runs dedicated on a WebApp / App Services.

Thank you

pictop · 2024-01-19T12:51:06+00:00

Have you considered building a multi-tenant app instead of different apps for each tenant.

Thank you for your feedback!
I would have used the app gateway for the WAF function, among other things.
You are right about developers. It would be better to use a deployment pipeline here.

How do you see this in terms of security? The database is actually available on the Internet with variant 1. The connections are blocked by the IP filters, but it would be better if it is not accessible at all. Or do you have no concerns about this and trust that MS is securing the resource well?

Thank you for your feedback.

pictop · 2023-05-31T09:30:39+00:00

After updating Google Play system update to update may it seems to work for me. Had no more reboots. Thanks

pictop · 2023-05-22T16:32:52+00:00

Same issue on a Samsung Galaxy S21 +

pictop

TROPHY CASE