1 min read
Azure ACME Certificate Automation (Base Edition)

Serverless certificate automation for Azure. Deploys the open-source Acmebot engine with the surrounding Terraform infrastructure — Storage, Key Vault, IAM, and App Service on the Consumption tier.

What’s included

  • Automated issuance and renewal via Let’s Encrypt (DNS-01)
  • Certificates stored directly in Azure Key Vault
  • System-Assigned Managed Identity — no hardcoded credentials
  • Consumption tier — effectively $0/month compute cost

Limitations (Base Edition)

Public endpoint, no VNet integration, no Private Link. The Enterprise Edition adds full Private Link isolation and Managed Identity hardening for ISO 27001 / NIS2 environments.