The main thing accomplished in the previous post was getting a CA up and running with a client certificate signed by. But because of the potential for future protocol downgrade attacks and other TLS vulnerabilities, First, we need to add the new package in the project file: Then we can configure data protection to use Azure Storage: So the main part is this: There are various overloads for PersistKeysToAzureBlobStorage. Therefore for Windows Server, it is recommended to place Kestrel behind IIS. To disable the Server header from Kestrel, you need to set AddServerHeader to false.
Kestrel letsencrypt json’s “dependencies” section and adding: 'Microsoft.
