Generating a CA recognised .pfx, to enable a https Azure web app

Question

I have developed an Azure web app. The standard address is:

https://wirdle.azurewebsites.net/

Then, I got a domain from google and linked it:

http://www.wirdle.co.uk/

By default though, it is an unsecured HTTP. I would not be too fussed about this, but being http vs https means some of the features do not work (copying your results to the clipboard, for example). I can go to the https version here:

https://www.wirdle.co.uk/

However, I then get a page before I can enter saying the site is unsecured, which is offputting to the users (and also, the site is unsecured, which is bad!)

I can go on the Google Domain site, then to Security, but I cannot figure out how to secure my domain.

On the Azure side, it seems like I could give my custom domain a certificate, though I do not know how to generate this properly. I am able to generate a .cer, and a .pem using openssl. However, that seems like a dead end since they will be self-signed, and I would assume browsers will may reject that. In the end I need to give Azure a .pfx, that is recognised by CA. How can I do this?

Thanks.

Edit:

Answer 1

• You need to buy the SSL certificate from any of the certificate providers.

• They will provide you either the pfx certificate or pem, CA certificates with private key

• If they provide pem, CA certificates with private key, you can use SSL shopper to convert the certificate to pfx

• Then you can upload the pfx certificate and do the SSL binding to your custom domain