Configure HTTPS for your custom domain - Azure Front Door (2023)

  • Article
  • 8 minutes to read

By default, Azure Front Door allows secure TLS deployment for your apps when a custom domain is added. By using the HTTPS protocol on your custom domain, you ensure that your sensitive data is transmitted securely with TLS/SSL encryption when sent over the Internet. When your web browser connects to a website via HTTPS, it validates the website's security certificate and verifies that it was issued by a legitimate certificate authority. This process provides security and protects your web applications from attacks.

Azure Front Door supports both Azure managed certificates and customer managed certificates.

  • A domain not validated by Azure requires verification of domain ownership. The managed (AFD-managed) certificate is issued and managed by Azure Front Door. By default, Azure Front Door automatically enables HTTPS for all your custom domains using Azure managed certificates. No additional steps are required to obtain an AFD managed certificate. A certificate is created during domain validation.

  • A pre-validated Azure domain doesn't require domain validation because it's already validated by another Azure service. The managed (Azure-managed) certificate is issued and managed by the Azure service. No additional steps are required to obtain an Azure Managed Certificate. Azure Front Door does not issue a new managed certificate for this scenario and instead uses the managed certificate issued by the Azure service. For information about supported Azure services for pre-validated domains, seecustom domain.

  • For both scenarios, you can bring your own certificate.


  • Before configuring HTTPS for your custom domain, you must first create an Azure Front Door profile. For more information, seeCreate an Azure Front Door profile.

  • If you don't already have a custom domain, you must first purchase one from a domain host. see for exampleBuy a custom domain name.

  • If you use Azure to host yourdns domains, you must delegate the Domain Name System (DNS) from the domain provider to an Azure DNS. For more information, seeDelegate a domain to Azure DNS. Otherwise, if you use a domain provider to manage your DNS domain, you must manually validate the domain by entering the requested DNS TXT records.

AFD Managed Certificates for Pre-Validated Non-Azure Domains

  1. ChooseDomainsunder Settings for your Azure Front Door profile, then selectaddto add a new domain.

    Configure HTTPS for your custom domain - Azure Front Door (1)

  2. Noadd a domainOn the page, enter or select the following information, and then selectAdd toto integrate the custom domain.

    Configure HTTPS for your custom domain - Azure Front Door (2)

    domain typeChoosePre-validated non-Azure domain
    DNS managementChooseAzure Managed DNS (recommended)
    Zona DNSChooseZona DNS do Azurehosting the custom domain.
    custom domainChoose an existing domain or add a new domain.
    HTTPSChooseManaged AFD (recommended)
  3. Validate and associate the custom domain with an endpoint by following the activation stepscustom domain.

  4. Once the custom domain is successfully mapped to an endpoint, an AFD-managed certificate is provisioned for Front Door. This process can take from a few minutes to an hour.

    (Video) Azure AD B2C - Configuring custom domains using Azure Front Door

Azure Managed Certificates for Azure Pre-Validated Domain

  1. ChooseDomainsunder Settings for your Azure Front Door profile, then selectaddto add a new domain.

    Configure HTTPS for your custom domain - Azure Front Door (3)

  2. Noadd a domainOn the page, enter or select the following information, and then selectAdd toto integrate the custom domain.

    Configure HTTPS for your custom domain - Azure Front Door (4)

    domain typeChoosePre-validated Azure domain
    Pre-validated custom domainSelect a custom domain name from the Azure Services dropdown.
    HTTPSChooseManaged by Azure (recommended)
  3. Validate and associate the custom domain with an endpoint by following the activation stepscustom domain.

  4. Once the custom domain is successfully mapped to the endpoint, an AFD-managed certificate is provisioned for Front Door. This process can take from a few minutes to an hour.

Use your own certificate

You can also use your own TLS certificate. When creating your TLS/SSL certificate, you must create a complete certificate chain with an approved certificate authority (CA) that is part of theList of Trusted Microsoft Certificate Authorities. If you use an unapproved CA, your request will be denied. The root CA must be part of theList of Trusted Microsoft Certificate Authorities. If a certificate is presented without a complete chain, there is no guarantee that the requirements surrounding that certificate will work as expected. This certificate must be imported into an Azure Key Vault before you can use it with Azure Front Door Standard/Premium. See how it's doneimport a certificatepara Azure Key Vault.

Prepare your key vault and certificate

  • You must have a key vault in the same Azure subscription as your Azure Front Door Standard/Premium profile. Create a key vault if you don't already have one.


    Currently, Azure Front Door only supports key vaults in the same subscription as the Front Door profile. Selecting a key vault in a subscription other than the Standard/Premium Azure Front Door profile will result in an error.

  • If your key vault has network access restrictions enabled, you must configure your key vault to allow trusted Microsoft services bypass the firewall.

  • Your key vault must be configured to useKey Vault Access Policyauthorization template.

  • If you already have a certificate, you can upload it to your key vault. Otherwise, create a new certificate directly from Azure Key Vault from one of the partner Certificate Authorities (CAs) that Azure Key Vault is integrated with. Upload your certificate ascertificateobject instead of asecret.


(Video) Azure Front Door - Adding a custom domain and a managed certificate

Front Door does not support certificates with elliptic curve (EC) cryptographic algorithms. The certificate must have a complete certificate chain with leaf and intermediate certificates, and the root CA must be part of theList of Trusted Microsoft Certificate Authorities.

Registrar porta frontal do Azure

Register the service principal for Azure Front Door as an application in your Azure Active Directory (Azure AD) using Azure PowerShell or Azure CLI.


  • This action requires that you have global admin permissions on Azure AD. Only registration needs to be doneonce per Azure AD tenant.
  • The Application ID of205478c0-bd83-4e1b-a9d6-db63a3e1e1c8is preset by Azure for Front Door Standard and Premium tiers for all Azure tenants and subscriptions. Azure Front Door (classic) has a different App ID.
  1. install if necessaryAzure-PowerShellin PowerShell on your local computer.

  2. Run the following command in PowerShell:

    New-AzADServicePrincipal-ApplicationId "205478c0-bd83-4e1b-a9d6-db63a3e1e1c8"
  1. If necessary, installAzure-CLIon your local machine.

  2. On the CLI, run the following command:

    az ad sp criar --id 205478c0-bd83-4e1b-a9d6-db63a3e1e1c8

Grant Azure Front Door access to your key vault

Grant Azure Front Door permission to access the certificates in your Azure Key Vault account.

  1. Select from your key vault accountaccess policies.

  2. Chooseadd neworCryingto create a new access policy.

  3. Nosecret permissions, selectGetso Front Door can retrieve the certificate.

  4. Nocertificate permissions, selectGetso Front Door can retrieve the certificate.

  5. Noselect main, search for205478c0-bd83-4e1b-a9d6-db63a3e1e1c8and selectMicrosoft.AzureFrontDoor-Cdn. ChooseNext.

  6. Noapp, selectNext.

  7. Nocheck + create, selectCrying.

    (Video) Configure HTTPS on an Azure CDN custom domain


If your key vault is protected by network access restrictions, make sure you allow trusted Microsoft services to access your key vault.

Azure Front Door can now access this key vault and the certificates it contains.

Select certificate to deploy Azure Front Door

  1. Retorne ao Azure Front Door Standard/Premium no portal.

  2. navigate tosecretsunderDefinitionsand select+ add certificate.

    Configure HTTPS for your custom domain - Azure Front Door (5)

  3. Noadd certificateOn the Azure Front Door Standard/Premium page, check the box for the certificate you want to add.

  4. If you choose a certificate, you mustSelect the certificate version. if you chooseLast, Azure Front Door is automatically updated when the certificate is rotated (renewed). Alternatively, you can select a specific certificate version if you prefer to manage certificate rotation yourself.

    Leave the version selection at "Latest" and selectAdd to.

    Configure HTTPS for your custom domain - Azure Front Door (6)

  5. Once the certificate is successfully deployed, you can use it when adding a new custom domain.

    Configure HTTPS for your custom domain - Azure Front Door (7)

  6. navigate toDomainsunderAttitudeand selectaddto add a new custom domain. At theadd a domainpage, select "Bring Your Own Certificate (BYOC)" toHTTPS. Forsecret, select the certificate you want to use from the drop-down list.


    (Video) Practical 14: Adding custom domain in Front Door service

    The Common Name (CN) of the selected certificate must match the added custom domain.

    Configure HTTPS for your custom domain - Azure Front Door (8)

  7. Follow the onscreen steps to validate the certificate. Then map the newly created custom domain to an endpoint as described inCreating a custom domainGuide.

Certificate renewal and certificate type change

AFD managed certificate for non-Azure domain pre-validated

AFD-managed certificates are automatically rotated if your custom domain uses a CNAME record that points to an Azure Front Door Standard or Premium endpoint.

Front Door does not automatically rotate certificates in the following scenarios:

  • The custom domain's CNAME record points to other DNS resources.
  • The custom domain points to Azure Front Door via a long chain. For example, if you put Azure Traffic Manager in front of Azure Front Door, the CNAME string will becontoso.comCNAME acontoso.trafficmanager.netCNAME

The domain validation status becomespending revalidation45 days before the managed certificate expires, orrefusedif the certificate authority refuses to issue the managed certificate. Refer toAdd a custom domainfor actions for each of the domain statuses.

Azure Managed Certificate for Azure Pre-Validated Domain

Azure managed certificates are automatically rotated through the Azure service that validates the domain.

Use your own certificate

To automatically switch the certificate to the latest version when a newer version of the certificate is available in your key vault, set the secret version to Newer. If a specific version is selected, you must manually select the new version for certificate rotation again. It takes up to 72 hours for the new version of the certificate/secret to be automatically deployed.

If you want to change the secret version from Latest to a specific version or vice versa, add a new certificate.

How to switch between certificate types

  1. You can change an existing Azure Managed Certificate to a User Managed Certificate by selecting the certificate status to opencertificate detailsPage.

    Configure HTTPS for your custom domain - Azure Front Door (9)

  2. Nocertificate detailsPage to switch betweenazure managedeBring-Your-Own-Zertifikat (BYOC). Then follow the same steps as above to select a certificate. ChooseTo updateto change the certificate associated with a domain.


    • It can take up to an hour for the new certificate to be deployed when switching between certificate types.
    • If your domain's status is Approved, there is no downtime when switching the certificate type between BYOC and managed certificate. If you switch to a managed certificate, you will continue to receive the previous certificate unless ownership of the domain is revalidated and the domain status is approved.
    • Switching from BYOC to a managed certificate requires domain revalidation. If you're migrating from a managed certificate to BYOC, you don't need to revalidate the domain.

    Configure HTTPS for your custom domain - Azure Front Door (10)

Next steps

LearnCache com Azure Front Door Standard/Premium.

(Video) Azure Front Door + Custom Domain + Azure Front Door Manage certificates.


How do I redirect my Azure Front Door to HTTPS? ›

Create HTTP to HTTPS redirect rule

Ensure that the appropriate Frontend/domains is selected. Under the Route Details section, set the Route Type to Redirect. Set the Redirect type to Moved (301) and Redirect protocol get set to HTTPS only. Select Add to save the routing rule for HTTP to HTTPS redirect.

Does Azure provide HTTPS option for custom domain applications? ›

To enable HTTPS on an Azure CDN custom domain, you use a TLS/SSL certificate. You choose to use a certificate that is managed by Azure CDN or use your certificate. Azure CDN handles certificate management tasks such as procurement and renewal. After you enable the feature, the process starts immediately.

How do I add SSL to my custom domain in Azure? ›

In the Azure portal, from the left menu, select App Services > <app-name>. From the left navigation of your app, start the TLS/SSL Binding dialog by: Selecting Custom domains > Add binding. Selecting TLS/SSL settings > Add TLS/SSL binding.

How do I setup a custom domain in Azure Front Door? ›

Select Domains under settings for your Azure Front Door profile and then select + Add button. On the Add a domain page, select the Domain type. You can select between a Non-Azure validated domain or an Azure pre-validated domain. Non-Azure validated domain is a domain that requires ownership validation.

How do I change http to HTTPS in Azure? ›

To run the commands in this tutorial, you also need to run Login-AzAccount to create a connection with Azure.
  1. Create a self-signed certificate.
  2. Create an application gateway.
  3. Add a listener and redirection rule.
  4. Create a virtual machine scale set.
  5. Test the application gateway.
  6. Next steps.
Apr 11, 2022

How do I enable HTTPS in Azure web app? ›

Enable HTTPS setting on Azure App service using Azure policy
  1. Prerequisites:
  2. Create a custom policy to Enable HTTPS on App Service:
  3. Assign the custom policy:
  4. Verify if the policy evaluation triggered:
  5. Identify non-compliant resources:
  6. Note : This Policy is used to enable HTTPS setting for App Service resources only.
Apr 18, 2022

How do I enable HTTPS only in Azure App Service? ›

Azure Portal

Navigate to App Services. In the left navigation, select TLS/SSL settings. In HTTPS Only, select On.

Does Azure AD require HTTPS? ›

The Azure Active Directory (Azure AD) application model specifies these restrictions to redirect URIs: Redirect URIs must begin with the scheme https . There are some exceptions for localhost redirect URIs.

Which is better Azure CDN or front door? ›

Azure CDN is best for delivering static content like Videos, Images and PDFs whereas Azure Front Door is for delivering sites, services and APIs. Azure CDN is cost-effective whereas Azure Front Door charges per ruleset. Azure CDN does all the functionality similar to Azure Front Door.

How to configure SSL certificate in Azure? ›

In the Azure portal, from the left menu, select App Services > <app-name>. From your app's navigation menu, select TLS/SSL settings > Private Key Certificates (. pfx) > Import App Service Certificate. Select the certificate that you just purchased, and then select OK.

How do I enable SSL on my domain? ›

Browse Certificates
  1. Click Browse Certificates. The SSL Certificate List will appear.
  2. Select an account from the Browse Account menu, or select Browse Apache. Note: ...
  3. Select the desired certificate.
  4. Click Use Certificate. The system automatically populates the text boxes. ...
  5. Click Install.
Nov 29, 2022

How do I force a domain to SSL? ›

How to force your visitors to use your Shared SSL Certificate
  1. log into your cPanel and access the redirects section.
  2. Set Type to Permanent (301)
  3. Next to redirects to, enter your website's url using the Shared SSL Certificate.
  4. We recommend having Redirect with or without www. ...
  5. Ensure Wild Card Redirect is selected.
  6. Click Add.
Oct 11, 2018

How do I map a custom domain in Azure App Service? ›

Map a hostname manually
  1. In the Azure portal, navigate to your app's management page.
  2. In the left menu for your app, select Custom domains.
  3. Select Add custom domain.
  4. For Domain provider, select App Service Domain.
  5. For TLS/SSL certificate, select App Service Managed Certificate if your app is in Basic tier or higher.
Feb 3, 2023

Which enabling HTTPS via front door managed certificate is not supported for apex root domains? ›

Front Door managed certificate management type is not currently supported for apex or root domains. The only option available for enabling HTTPS on an apex or root domain for Front Door is using your own custom TLS/SSL certificate hosted on Azure Key Vault.

What is the difference between Azure Front Door and application gateway? ›

What is the difference between Azure Front Door and Azure Application Gateway? While both Front Door and Application Gateway are layer 7 (HTTP/HTTPS) load balancers, the primary difference is that Front Door is a non-regional service whereas Application Gateway is a regional service.

How do I configure HTTPS? ›

  1. Log in to B2B Advanced Communications. ...
  2. Click Systems Management > Servers.
  3. On the Servers page, click New and select HTTPS.
  4. On the Create HTTPS Server page, specify values for the following fields: Associated organization. ...
  5. Click Save to save the HTTPS server configuration.

How do I enable HTTPS mode? ›

Enable/Disable HTTPS-Only Mode

and select Settings. Select Privacy & Security from the left menu. Scroll down to HTTPS-Only Mode. Use the radio button to select whether to enable or disable HTTPS-Only Mode, or select to only enable it for private windows.

How do I change HTTP to HTTPS automatically? ›

Redirecting HTTP to HTTPS
  1. Redirect All Web Traffic. If you have existing code in your .htaccess, add the following: RewriteEngine On RewriteCond %{SERVER_PORT} 80 RewriteRule ^(.*)$$1 [R,L]
  2. Redirect Only a Specific Domain. ...
  3. Redirect Only a Specific Folder.
Jun 13, 2019

How do I connect to Azure VM HTTPS? ›

To do that,
  1. Log in to Azure portal ( as Global Administrator.
  2. Go to Virtual Machines.
  3. From the VM list, click on the Windows server 2019 VM we created in the earlier step. ...
  4. In VM properties page, verify it doesn't have public IP assigned.
  5. To test the bastion service, click on Connect.
Nov 7, 2019

How do I make my Azure website secure? ›

HTTPS and Certificates is already accessible using HTTPS. If you configure a custom domain for your app, you should also secure it with a TLS/SSL certificate so that client browsers can make secured HTTPS connections to your custom domain.

What is required when enabling HTTPS for a web app? ›

Without going into details, to enable HTTPS, a web server needs a private key and a public key to set up encrypted communication with clients. The public key is included in a digital certificate issued by a Certificate Authority (CA), which guarantees that it belongs to that server with that specific domain name.

How do I bind SSL certificate in Azure App Service? ›

Find the thumbprint

In the Azure portal, from the left menu, select App Services > <app-name>. From the left navigation of your app, select TLS/SSL settings, then select Private Key Certificates (. pfx) or Public Key Certificates (. cer).

Does HTTPS Need a domain name? ›

But can you get SSL without a domain name? Yes, you can! Instead of securing a domain, you can encrypt a public IP address. Just like with regular certificates, you have a couple of validations options (DomainValidation and Business Validation).

Is HTTPS Everywhere still necessary? ›

Forcing usage of HTTPS automatically where possible is nowhere near as necessary as it once was, hence the decision to phase out and retire the HTTPS Everywhere extension by the end of 2022.

Is HTTPS always necessary? ›

You should always protect all of your websites with HTTPS, even if they don't handle sensitive communications.

What is the most secure type of front door? ›

Steel doors are among the best front doors for security. It's nearly impossible to break through; even if beaten or abused, these doors are more likely to dent than come down.

Is Azure Front Door a firewall? ›

Managed rules

Azure Front Door web application firewall (WAF) protects web applications from common vulnerabilities and exploits. Azure-managed rule sets provide an easy way to deploy protection against a common set of security threats.

Is Azure Front Door secure? ›

A scalable and secure entry point, Azure Front Door provides fast delivery of your global web applications. Front Door uses the Microsoft global edge network to create fast, secure, and widely scalable web applications. Key features include: Accelerated application performance by using split TCP-based anycast protocol.

Does Azure have SSL certificate? ›

Free SSL certificate is available in Azure provided by DigiCert.

Does Azure offer SSL certificate? ›

These TLS/SSL certificates can be stored in Azure Key Vault, and allow secure deployments of certificates to Windows virtual machines (VMs) in Azure. To learn more on how to Secure a web server on a Windows virtual machine in Azure with TLS/SSL certificates stored in Key Vault you can refer to this article as well.

How do I setup an SSL certificate? ›

In the Websites and Domains section for the domain name you want to use, click SSL/TLS Certificates. Click Add SSL Certificate. Enter a Certificate name, complete the fields in the Settings section, and then click Request.

Do I need an SSL certificate for my domain? ›

If you're asking yourself, “Do I need an SSL certificate?”, the fact is that every website should have an SSL certificate, even if they don't sell anything online. Let's go over why more in-depth below. SSL is a type of encryption protocol that secures data between browsers and servers so it can't be intercepted.

Does my domain have an SSL certificate? ›

To check an SSL certificate on any website, all you need to do is follow two simple steps. First, check if the URL of the website begins with HTTPS, where S indicates it has an SSL certificate. Second, click on the padlock icon on the address bar to check all the detailed information related to the certificate.

How do I add SSL to my domain for free? ›

To get a free SSL certificate, domain owners need to sign up for Cloudflare and select an SSL option in their SSL settings.

How do I get HTTPS instead of HTTP? ›

What are the steps to migrate to HTTPS?
  1. Step 1: Buying an SSL Certificate. ...
  2. Step 2: Checking compatibility with your website's features. ...
  3. Step 3: Preparing the migration. ...
  4. Step 4: Enabling HTTPS. ...
  5. Step 5: Updating features to HTTPS. ...
  6. Step 6: Adding the new version of the site to Google Search Console.
Nov 9, 2020

Why HTTP is not redirecting to HTTPS? ›

Once you've set up HTTPS, make sure that all unsecure HTTP traffic to your site is redirected to HTTPS: Use canonical links in the head of your HTML page to help search engines figure out the best way to get to the page. Configure your server to redirect HTTP traffic to HTTPS: nginx.

Why is my website not redirecting to HTTPS? ›

If your site requires custom code to force the redirect to HTTPS, you will need to update a configuration file for your domain on the server. The name and location of the custom configuration file is different depending on what type of server your site is running on. This would either be Apache or Nginx.

How to route HTTP to HTTPS? ›

How to enable redirection from HTTP to HTTPS for a domain in...
  1. Log in to Plesk.
  2. Go to Domains > > Hosting Settings.
  3. Enable the setting Permanent SEO-safe 301 redirect from HTTP to HTTPS and select your certificate from the drop-down menu. Apply the changes.

How do I change the default authentication method in Azure? ›

How to change your default Multi-Factor Authentication option
  1. Navigate to the MFA Setup Page and sign in with your university credentials.
  2. Click "Change" next to your default sign-in method.
  3. On the "Change default method" screen, select the option to be set as your default from the drop-down list. Then click "Confirm."

How do I redirect HTTPS traffic? ›

There is another way, page rules.
  1. Go to Page Rules.
  2. Click “Create Page Rule”
  3. Enter the URL (put the asterisk, so redirection happens for all the URI)
  4. Click “Add a Setting” and select “Always Use HTTPS” from the drop-down.
Sep 6, 2022

How to convert HTTP to HTTPS without SSL certificate? ›

It is impossible to convert HTTP websites to HTTPS without a TLS/SSL certificate. The digital certificate is a key component of the HTTPS protocol. It needs to be INITIALLY verified to establish a secure connection to the website.

Should you redirect HTTP to HTTPS? ›

Security is a direction, not a destination. Sure it's good to get people to use https. So redirecting from http to https is more secure than keeping users in http without redirection. You could go another step further still, and completely shut off your http (non-tls) server.

What is the default authentication method in Azure? ›

Authentication methods

Security defaults users are required to register for and use Azure AD Multi-Factor Authentication using the Microsoft Authenticator app using notifications. Users may use verification codes from the Microsoft Authenticator app but can only register using the notification option.

Is Azure Authenticator the same as Microsoft authenticator? ›

The Microsoft Authenticator app replaced the Azure Authenticator app, and it's the recommended app when you use two-step verification. The Authenticator app is available for Android and iOS.

How do I enable modern authentication in Azure? ›

Manage security defaults

Sign in to admin center with your Global admin credentials. Go to Azure Active Directory Properties. At the bottom of the page, choose Manage Security defaults. Choose Yes to enable security defaults and No to disable security defaults.

How do I enable HTTPS traffic? ›

How to properly enable HTTPS on your server
  1. Buy an SSL certificate.
  2. Request the SSL certificate.
  3. Install the certificate.
  4. Update your site to enable HTTPS.
Jul 26, 2022

Does HTTPS automatically go to port 443? ›

SSL/TLS does not itself use any port — HTTPS uses port 443. That might sound kind of snooty, but there's an important distinction to be made there. Think of SSL/TLS as more of a facilitator. It enables other protocols, like HTTPS or DNS over TLS.

How do I enforce HTTPS connection? ›

To enforce HTTPS go to Site Tools > Security > HTTPS Enforce. Toggle the HTTPS Enforce button to On next to the chosen domain.

How to setup SSL in Azure VM? ›

Next steps
  1. Create an Azure Key Vault.
  2. Generate or upload a certificate to the Key Vault.
  3. Create a VM and install the NGINX web server.
  4. Inject the certificate into the VM and configure NGINX with a TLS binding.
Dec 11, 2022


1. azure front door custom domain
(Sean Yu)
2. Azure Front Door - Custom Certificates
(Sameera Perera)
3. Azure Front Door in front of Web Apps
4. Azure Front Door Setup
(Sameera Perera)
5. Azure Front Door [FULL COURSE IN 2.5 HOURS]
(Hussein Awad)
6. Azure Front Door and WAF with Custom Rules
(Rohit Sharma)
Top Articles
Latest Posts
Article information

Author: Delena Feil

Last Updated: 11/10/2022

Views: 6031

Rating: 4.4 / 5 (65 voted)

Reviews: 80% of readers found this page helpful

Author information

Name: Delena Feil

Birthday: 1998-08-29

Address: 747 Lubowitz Run, Sidmouth, HI 90646-5543

Phone: +99513241752844

Job: Design Supervisor

Hobby: Digital arts, Lacemaking, Air sports, Running, Scouting, Shooting, Puzzles

Introduction: My name is Delena Feil, I am a clean, splendid, calm, fancy, jolly, bright, faithful person who loves writing and wants to share my knowledge and understanding with you.