Hi, My understanding is that by default communication from a) ingress proxy to container apps b) container apps to container apps, don't use TLS, so requests have to be HTTP not HTTPs. Please confirm. Azure container apps provide peer to peer encryption for communication between container apps (container A to container B directly using application name). Is this same as mTLS - are container apps provided one certificate each and authenticate with each other using mTLS. I want to understand that if peer-to-peer encryption is enabled, should authentication be implemented for service to service communication or is it internally done. https://learn.microsoft.com/en-us/azure/container-apps/networking?tabs=workload-profiles-env%2Cazure-cli

mTLS for communication between container apps

RajivBansal-2486 311

Hi,

My understanding is that by default communication from a) ingress proxy to container apps b) container apps to container apps, don't use TLS, so requests have to be HTTP not HTTPs. Please confirm.
Azure container apps provide peer to peer encryption for communication between container apps (container A to container B directly using application name). Is this same as mTLS - are container apps provided one certificate each and authenticate with each other using mTLS. I want to understand that if peer-to-peer encryption is enabled, should authentication be implemented for service to service communication or is it internally done.