Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Web applications can be hosted inside of an enclave and made publicly accessible by routing traffic through a separate Demilitarized Zone (DMZ) enclave with a Web Application Gateway, Web Application Firewall, and a Public IP address, creating an Enclave Endpoint for the Web App, and establishing an enclave connection between the Web App and DMZ enclaves.
Public Web Applications in Azure Enclave

Steps to make your web app accessible from the internet in Azure Enclave
Deploy an enclave to host the public Web Application (
Enclave-WebApp).Deploy an enclave to host an Application Gateway (
Enclave-DMZ).Deploy a workload and the resources required to host the web application into
Enclave-WebApp.Deploy an Endpoint that allows traffic to the web application's IP Address over port
443and/or80intoEnclave-WebApp(endpoint-MyService).Deploy a workload and Application Gateway into
Enclave-DMZ.Configure the Web Application Storage Account to Proxy through the Application Gateway.
Create an enclave connection from
Enclave-DMZtoEnclave-WebApp.- Source Enclave:
Enclave-DMZ - Source IP/CIDR:
Application Gateway PIP - Destination Enclave:
Enclave-WebApp - Destination Endpoint:
endpoint-MyService
- Source Enclave: