{"id":6103,"date":"2021-01-11T16:29:15","date_gmt":"2021-01-12T00:29:15","guid":{"rendered":"https:\/\/www.microsoft.com\/insidetrack\/blog\/?p=6103"},"modified":"2023-06-11T13:38:10","modified_gmt":"2023-06-11T20:38:10","slug":"making-renewing-certificates-easier-at-microsoft-with-microsoft-azure","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/","title":{"rendered":"Making renewing certificates easier at Microsoft with Microsoft Azure"},"content":{"rendered":"<div class=\"m-alert f-error\" role=\"alert\">\n<div>\n<div class=\"c-glyph glyph-incident-triangle\" aria-label=\"Error message\"><\/div>\n<p class=\"c-paragraph\">This content has been archived, and while it was correct at time of publication, it may no longer be accurate or reflect the current situation at Microsoft.<\/p>\n<\/div>\n<\/div>\n<p>Cybersecurity is a constant challenge at Microsoft.<\/p>\n<p>To protect the connections between computer servers, resources, and their users, the company regularly uses digital certificates signed by trusted authority providers.<\/p>\n<p>Every quarter, the Microsoft Digital team is responsible for some 4,000 digital certificate renewals. At two to four hours to do each one, sometimes more, this used tens of thousands of labor hours every year.<\/p>\n<p>What if there were a way to avoid the manual, time-consuming tasks normally associated with certificate renewal? That\u2019s the question that Wilson Gajarla, a senior software engineer in Microsoft Digital, faced after an incident with an important certificate on a local machine in a Microsoft lab at the company headquarters in Redmond.<\/p>\n<p>When Gajarla and team noticed that the certificate was about to expire, they realized it would take more than a few hours to renew it. In this case, the lab itself was off-limits due to COVID-19 so the machine wasn\u2019t easily reachable to perform the manual renewal process.<\/p>\n<p>Fortunately, Gajarla was granted special permission to enter the building due to business urgency, and was able to renew the certificate in time. But the experience stuck with Gajarla.<\/p>\n<p>Gajarla began to look for better ways to manage server security, even in cases where an administrator can\u2019t connect remotely to a machine.<\/p>\n<p><em>[<\/em><a href=\"https:\/\/www.microsoft.com\/en-us\/itshowcase\/microsoft-azure-front-door-makes-it-easy-for-two-apps-to-boost-availability-and-security\"><em>See how Microsoft Azure Front Door makes it easy for two apps to boost availability and security.<\/em><\/a> <a href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/lessons-microsoft-learned-from-applying-zero-trust-during-covid-19\/\"><em>Find out what Microsoft learned from applying Zero Trust principles during COVID-19.<\/em><\/a> <a href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/using-microsoft-azure-to-develop-a-robust-external-supplier-api-catalog\/\"><em>Get inspired by Microsoft use of Microsoft Azure APIs to develop a robust external supplier catalog.<\/em><\/a><em>] <\/em><\/p>\n<p><strong>A heavy load for server and resource administrators<\/strong><\/p>\n<p>Today\u2019s servers and websites use digital certificates to provide a high level of security that\u2019s easy to take for granted, but this practice comes with a steep cost.<\/p>\n<p>\u201cIt can take several hours to renew a server certificate,\u201d says Ashish Sayal, a principal software engineering manager in Microsoft Finance. \u201cIt\u2019s a manual process, so there\u2019s always the risk of error or even bringing down the server if it\u2019s not done correctly. This impacts the level of customer trust and the organization\u2019s reputation.\u201d<\/p>\n<p>The engineers who are responsible for certificates must anticipate upcoming expirations, renew them based on the issue date, and then upload the newly signed certificate to all the resources that are using it. Finally, they have to communicate to all the certificate consumers the need to renew the new version on their resources as well.<\/p>\n<p>Sometimes authority providers require the renewal of all their issued certificates at once without advance notice. That means servers and resources have to use compromised certificates until the engineers can complete the process.<\/p>\n<p>\u201cRecently within Microsoft Digital, we had to renew more than 2,000 certificates across the teams,\u201d Gajarla says. \u201cSome teams had immense workloads to get this done.\u201d<\/p>\n<p>Timely certificate renewals are not just for servers used in development, they are essential to daily operations at Microsoft.<\/p>\n<p>\u201cIf a certificate renewal isn\u2019t taken care of on time, it will quickly escalate to leadership,\u201d Sayal says. \u201cWe need certificates to be current to stay compliant and avoid fire-fighting at the last minute.\u201d<\/p>\n<p><strong>Verify that a certificate is the best solution<\/strong><\/p>\n<p>The first step is making sure that a digital certificate is the right approach.<\/p>\n<p>\u201cWe should check why we are using the certificate,\u201d Gajarla says. \u201cIs there any modern way we can integrate the services without one?\u201d<\/p>\n<p>The answer is often yes.<\/p>\n<p>After Gajarla\u2019s difficulty gaining physical access to an asset with an expiring certificate, the team began exploring ways to optimize certificate management. Along the way, they found that sometimes a machine-specific certificate isn\u2019t needed at all.<\/p>\n<p>\u201cI recommend using Azure managed certificates for Azure Front Door, Azure Key Vault, Azure Content Delivery Network (CDN), and Azure App Services, included in every Azure subscription,\u201d Gajarla says. \u201cManaged certificates eliminate the need to physically touch a machine to handle routine certificate operations.\u201d<\/p>\n<p>In the past, Microsoft Digital used connection strings and shared access signature (SAS) tokens known as Secrets to access services and storage. To maintain the authorized connection string, Secrets must be renewed every three months which took hundreds of hours each year.<\/p>\n<p>Now the team takes every opportunity to avoid certificates, connection strings, and SAS tokens from the beginning. Instead, Microsoft Digital uses managed identities for Microsoft Azure resources and other new Microsoft Azure services to protect servers and resources.<\/p>\n<figure id=\"attachment_6108\" aria-describedby=\"caption-attachment-6108\" style=\"width: 1430px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-6108 size-full\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_image_001.png\" alt=\"Managed Identity services with Microsoft Azure diagram showing Microsoft Azure resources at left and Microsoft Azure Services that can be accessed with Managed Identity at right. \" width=\"1430\" height=\"819\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_image_001.png 1430w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_image_001-300x172.png 300w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_image_001-1024x586.png 1024w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_image_001-768x440.png 768w\" sizes=\"auto, (max-width: 1430px) 100vw, 1430px\" \/><figcaption id=\"caption-attachment-6108\" class=\"wp-caption-text\"><em>Connecting cloud resources with Microsoft Azure services (available as of December 2020).<\/em><\/figcaption><\/figure>\n<p>Another approach is to add encryption when the data is at rest or in transit using <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/storage\/common\/storage-service-encryption\" target=\"_blank\" rel=\"noopener\">Microsoft Azure service managed keys<\/a>, which reduces risk and lessens the need to own and manage digital certificates.<\/p>\n<p>\u201cInvestigate whether you really need a certificate,\u201d Sayal says. \u201cWith the modern world that Azure offers, you don\u2019t need them as often.\u201d<\/p>\n<p><strong>Automation and operations with Microsoft Azure<\/strong><\/p>\n<p>Gajarla discovered several certificate management best practices including a technique called \u2018touchless certificate management\u2019 that uses Microsoft Azure Key Vault. \u201cThis Azure service is the main driver of automation,\u201d Gajarla says. \u201cIt connects to the certificate providers and automatically renews them.\u201d<\/p>\n<blockquote class=\"quote-body\"><p>Now that the process is automated, I didn\u2019t even notice that I needed to renew my certificates. It saves me the time it would have taken to deal with them and lets me focus on my current tasks.<\/p>\n<p class=\"source\">&#8211; Dennis Han, software engineer, Microsoft Finance<\/p>\n<\/blockquote>\n<p>\u201cEven with custom domain endpoint, you can use the automation options provided by Key Vault,\u201d Gajarla says. \u201cThis integrates well with third-party certificate providers. It\u2019s the most efficient way to create, roll over, and renew certificates.\u201d<\/p>\n<p>Touchless certificates are not associated with an individual machine. \u201cIt\u2019s not a reactive, but a proactive approach,\u201d Sayal says.<\/p>\n<p>Developer Dennis Han, a software engineer in Microsoft Finance, is already benefiting from the new Microsoft Digital practices. \u201cNow that the process is automated, I didn\u2019t even notice that I needed to renew my certificates,\u201d Han says. \u201cIt saves me the time it would have taken to deal with them and lets me focus on my current tasks.\u201d<\/p>\n<p>Han also finds that the new system is better for security in addition to ease of certificate maintenance. \u201cIt enables business functionality rather than requiring me to spend time managing infrastructure,\u201d Han says.<\/p>\n<p>Likewise, Gajarla has seen a time savings for engineering across the board. Teams are still rolling out the new practices. \u201cSome teams have 100% adoption while a few have legacy systems and are still in the process,\u201d Gajarla says.<\/p>\n<p>The benefits are already clear.<\/p>\n<p>\u201cNow each service has its own identity, not tied to a machine,\u201d Gajarla says. &#8220;Senior leadership doesn\u2019t have to monitor what certificates are expiring or follow up with their teams anymore.&#8221;<\/p>\n<p>Sayal has noticed a difference as well.<\/p>\n<p>\u201cNow everything is done proactively,\u201d Sayal says. \u201cNow everyone can focus on their best work.\u201d<\/p>\n<p><a href=\"https:\/\/www.microsoft.com\/en-us\/itshowcase\/microsoft-azure-front-door-makes-it-easy-for-two-apps-to-boost-availability-and-security\">See how Microsoft Azure Front Door makes it easy for two apps to boost availability and security.<\/a><\/p>\n<p><a href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/lessons-microsoft-learned-from-applying-zero-trust-during-covid-19\/\">Find out what Microsoft learned from applying Zero Trust principles during COVID-19.<\/a><\/p>\n<p><a href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/using-microsoft-azure-to-develop-a-robust-external-supplier-api-catalog\/\">Get inspired by Microsoft use of Microsoft Azure APIs to develop a robust external supplier catalog.<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>This content has been archived, and while it was correct at time of publication, it may no longer be accurate or reflect the current situation at Microsoft. Cybersecurity is a constant challenge at Microsoft. To protect the connections between computer servers, resources, and their users, the company regularly uses digital certificates signed by trusted authority [&hellip;]<\/p>\n","protected":false},"author":146,"featured_media":6112,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"_hide_featured_on_single":false,"_show_featured_caption_on_single":true,"footnotes":""},"categories":[1],"tags":[],"coauthors":[674],"class_list":["post-6103","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","m-blog-post"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v24.3 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Making renewing certificates easier at Microsoft with Microsoft Azure - Inside Track Blog<\/title>\n<meta name=\"description\" content=\"Spending hours on certificate renewals and maintenance is no longer necessary with Microsoft Azure web services and certificate alternatives. Microsoft has identified several best practices and a \u2018touchless certificate management\u2019 technique to help automate these processes and safeguard company servers, websites, and resources.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Making renewing certificates easier at Microsoft with Microsoft Azure - Inside Track Blog\" \/>\n<meta property=\"og:description\" content=\"Spending hours on certificate renewals and maintenance is no longer necessary with Microsoft Azure web services and certificate alternatives. Microsoft has identified several best practices and a \u2018touchless certificate management\u2019 technique to help automate these processes and safeguard company servers, websites, and resources.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/\" \/>\n<meta property=\"og:site_name\" content=\"Inside Track Blog\" \/>\n<meta property=\"article:published_time\" content=\"2021-01-12T00:29:15+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-06-11T20:38:10+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_wordpress_hero-5ffc8c94b4d95.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"2300\" \/>\n\t<meta property=\"og:image:height\" content=\"1293\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Inside Track \u2013 retired stories\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Inside Track \u2013 retired stories\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/\",\"name\":\"Making renewing certificates easier at Microsoft with Microsoft Azure - Inside Track Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_wordpress_hero-5ffc8c94b4d95.jpg\",\"datePublished\":\"2021-01-12T00:29:15+00:00\",\"dateModified\":\"2023-06-11T20:38:10+00:00\",\"author\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/59e5f7b07dae629412c990cc1a63b575\"},\"description\":\"Spending hours on certificate renewals and maintenance is no longer necessary with Microsoft Azure web services and certificate alternatives. Microsoft has identified several best practices and a \u2018touchless certificate management\u2019 technique to help automate these processes and safeguard company servers, websites, and resources.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/#primaryimage\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_wordpress_hero-5ffc8c94b4d95.jpg\",\"contentUrl\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_wordpress_hero-5ffc8c94b4d95.jpg\",\"width\":2300,\"height\":1293,\"caption\":\"Wilson Gajarla, a senior software engineer (left), Ashish Sayal, principal software engineer (top right), and Dennis Han, software engineer, worked together to transform the way Microsoft teams use digital certificates. (Photos by Wilson Gajarla, Ashish Sayal, and Dennis Han)\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Making renewing certificates easier at Microsoft with Microsoft Azure\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/\",\"name\":\"Inside Track Blog\",\"description\":\"How Microsoft does IT\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/59e5f7b07dae629412c990cc1a63b575\",\"name\":\"Inside Track \u2013 retired stories\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/image\/ee0de87c339052d5d84852473bd7f213\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/24a8c329ab32afd1bc23fd1658d1acc2?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/24a8c329ab32afd1bc23fd1658d1acc2?s=96&d=mm&r=g\",\"caption\":\"Inside Track \u2013 retired stories\"},\"description\":\"The content on this page was crafted to highlight a specific moment in time or the solutions that have led us to where we are today. It offers valuable insights into our journey and the progress made over the years. Check out the Inside Track blog page for our up-to-date stories around Microsoft.\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/author\/insidetrackarchive\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Making renewing certificates easier at Microsoft with Microsoft Azure - Inside Track Blog","description":"Spending hours on certificate renewals and maintenance is no longer necessary with Microsoft Azure web services and certificate alternatives. Microsoft has identified several best practices and a \u2018touchless certificate management\u2019 technique to help automate these processes and safeguard company servers, websites, and resources.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/","og_locale":"en_US","og_type":"article","og_title":"Making renewing certificates easier at Microsoft with Microsoft Azure - Inside Track Blog","og_description":"Spending hours on certificate renewals and maintenance is no longer necessary with Microsoft Azure web services and certificate alternatives. Microsoft has identified several best practices and a \u2018touchless certificate management\u2019 technique to help automate these processes and safeguard company servers, websites, and resources.","og_url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/","og_site_name":"Inside Track Blog","article_published_time":"2021-01-12T00:29:15+00:00","article_modified_time":"2023-06-11T20:38:10+00:00","og_image":[{"width":2300,"height":1293,"url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_wordpress_hero-5ffc8c94b4d95.jpg","type":"image\/jpeg"}],"author":"Inside Track \u2013 retired stories","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Inside Track \u2013 retired stories","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/","name":"Making renewing certificates easier at Microsoft with Microsoft Azure - Inside Track Blog","isPartOf":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/#primaryimage"},"image":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_wordpress_hero-5ffc8c94b4d95.jpg","datePublished":"2021-01-12T00:29:15+00:00","dateModified":"2023-06-11T20:38:10+00:00","author":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/59e5f7b07dae629412c990cc1a63b575"},"description":"Spending hours on certificate renewals and maintenance is no longer necessary with Microsoft Azure web services and certificate alternatives. Microsoft has identified several best practices and a \u2018touchless certificate management\u2019 technique to help automate these processes and safeguard company servers, websites, and resources.","breadcrumb":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/#primaryimage","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_wordpress_hero-5ffc8c94b4d95.jpg","contentUrl":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_wordpress_hero-5ffc8c94b4d95.jpg","width":2300,"height":1293,"caption":"Wilson Gajarla, a senior software engineer (left), Ashish Sayal, principal software engineer (top right), and Dennis Han, software engineer, worked together to transform the way Microsoft teams use digital certificates. (Photos by Wilson Gajarla, Ashish Sayal, and Dennis Han)"},{"@type":"BreadcrumbList","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/making-renewing-certificates-easier-at-microsoft-with-microsoft-azure\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.microsoft.com\/insidetrack\/blog\/"},{"@type":"ListItem","position":2,"name":"Making renewing certificates easier at Microsoft with Microsoft Azure"}]},{"@type":"WebSite","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/","name":"Inside Track Blog","description":"How Microsoft does IT","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.microsoft.com\/insidetrack\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/59e5f7b07dae629412c990cc1a63b575","name":"Inside Track \u2013 retired stories","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/image\/ee0de87c339052d5d84852473bd7f213","url":"https:\/\/secure.gravatar.com\/avatar\/24a8c329ab32afd1bc23fd1658d1acc2?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/24a8c329ab32afd1bc23fd1658d1acc2?s=96&d=mm&r=g","caption":"Inside Track \u2013 retired stories"},"description":"The content on this page was crafted to highlight a specific moment in time or the solutions that have led us to where we are today. It offers valuable insights into our journey and the progress made over the years. Check out the Inside Track blog page for our up-to-date stories around Microsoft.","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/author\/insidetrackarchive\/"}]}},"jetpack_featured_media_url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2021\/01\/10142_wordpress_hero-5ffc8c94b4d95.jpg","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9hcZA-1Ar","_links":{"self":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/6103","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/users\/146"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/comments?post=6103"}],"version-history":[{"count":10,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/6103\/revisions"}],"predecessor-version":[{"id":11341,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/6103\/revisions\/11341"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/media\/6112"}],"wp:attachment":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/media?parent=6103"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/categories?post=6103"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/tags?post=6103"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/coauthors?post=6103"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}