How to sign with azure key vault in linux?
Hello, how can I use Azure key vault to sign my JAVA code? My compilation machine is Linux, and I found that Azure sign tool seems to be only available on Windows. If my compilation machine is Linux, how can I access key vault for signing.
Use API web app for DefaultAzureCredential
I created a key vault using .net and have added access policies which allows access for the api web application to create keys, secrets, and certificates. The goal would be able to create keys, secrets, and certificates through .net c# code. I tried…
Azure Key Vault RBAC permissions required for APIM to retreive a cert?
Hi I have a Azure API manager setup and want to add a custom domain. We have deployed Azure Key Vault and uploaded a certificate. We have deployed Key Vault with the recommended "role-based access control" We have given the APIM managed…
How to get Azure key/key vault region?
In cross tenant scenario, like this, how to check the key region with only key/key vault url? I want to use it in create disk encryption set, but it require in same region. And it cost a lot, take a while to create. is there any way to get the region?…
Azure Devops Pipeline failing on azure key vault
We get this error : fail: AzureSignTool.SignCommand[0] Failed to retrieve certificate *** from Azure Key Vault. Please verify the name of the certificate and the permissions to the certificate. Error message: ClientSecretCredential authentication…
Assign RBAC "Key Vault Administrator" role to Azure App via C# (.NET SDK)
I use below C# code create KeyVault with RBAC permission model. using KeyVaultModels = Microsoft.Azure.Management.KeyVault.Models; KeyVaultModels.VaultProperties vaultProperties = new KeyVaultModels.VaultProperties() { EnableRbacAuthorization = true, …
How to connect azure Keyvault(Public Access Disabled) To Power automate cloud
Team, Please guide on how i can connect azure key vault(Public access disabled ) to Power automate flow in cloud. What i have done already> 1.Registered an application in Azure AD and assigned necessary persmissions on the keyvault. With public access…
How to programally check if the user-assigned managed identity have access/permissions to the key from key vault in an other tenant?
Hi, There is two tenant A, B. tenant A have two application, 1. manageApp used by my program 2. CMEK-app using to get permisstion from tenant B by admin consent. And one user-assigned managed id configured as federated identity with the CMEK-app used…
Application running in AKS gets 403 forbidden by rbac when using service principal to fetch secret in keyvault.
The service principal has key vault secrets user in the resource group where the keyvault is. The pod authenticates with az --service-principal -n [app_id] -p [secret] --tenant [tenant id] The service principal have had keyvault admin role, but with…
SSL certificate
I'm new to the subject, I would like to use an SSL certificate from another certification company within Azure so I can access a web application that I have running within an Azure VM, https://xpto.meudominio.com.br, I don't know how do and whether I can…
How to export the secrets details in keyvaults using azure resource graph query?
How to export the secrets details in keyvaults using azure resource graph query
Monitor Azure keyvault Key\Secret\Certificate Expiry
we are looking for a mechanism to alert on Keyvault Key\Secret\Certificate when it is nearby expiry without using any automation(runbook\Webhook) is there any possibility?
how to understand azure key vault access policy?
hi friend, i have create a service principal, a azure key vault, a secret scope called A and B under AKV . now i have grant get/list...permission to that service principal through access principal. it's mean that service principal can access both…
Key Vault Reference in web app config now says 'AccessToKeyVaultDenied'
A while back I setup a RBAC key vault. I followed some guide where I added a connection string under my Wep App => Configuration. All was green after that and worked. Now, however, I noticed that this happend Never seen this before. First thought it…
Issue while adding custom domain to azure front door standard tier
Hi All, Greetings!!! As a part of a POC while trying to add a custom domain to the Azure front door standard tier, I created a certificate in azure key vault with the subject as the intended custom domain ("CN= <custom domain>"). CNAME…
I cannot delete a vault in Azure
I am receiving the error below when attempting to delete a vault. I removed any dependencies that I saw but I still receive the error. Any help would be appreciated. Vault Deletion Error Recovery Services Vault cannot be deleted as there are existing…
Unexpected charges for key vault services
Hello. On the 4th april I created a key vault service due to a mistake, and although I incurred a cost of around £20 on the day, I deleted the service on the same day. But when I looked at it today (7th april), I found that the service was still showing…
No renewal event (1001) - Key Vault Virtual machine extension
How can I troubleshoot linkOnRenewal (IIS Certificate Rebind) using the Windows version of KV virtual machine extension? When I create a new version of the certificate in KV, then it installs cert but there is no renewal (1001) event in Windows Event…
How to support rolling restarts with AZ KeyVault csi driver
I have a providerClass setup like so: spec: provider: azure secretObjects: - secretName: keycloak-http type: Opaque data: - objectName: keycloak-password key: password - objectName: keycloak-user …
Backstage (https://backstage.io/) Application Deployment on AKS: Unable to expose Azure key vault secrets as environment variables
Hi Team, I have a backstage application running on k8 cluster (AKS) and have config which mounts azure secrets at location /mnt/secrets which is working as intended able to verify the secret has been mounted properly. Now the goal is exposing these as…