How to secure APIM subscription key when calling APIs from Web Client Application
Hello, What are some secure ways to pass the Azure API Management (APIM) subscription key while calling APIs, without exposing it in the browser network tab? Passing the key inside the header is not ideal as it can be exposed in the network tab. Would…
Have an 500 error using Azure Key&Vault when deploy IIS
Hello. First of all, I succeed connecting between my Asp .NET Core 8 MVC project and Azure Key&Vault in local environment. However, I got an 500 error after deploy into IIS in my computer. What I want to do: I just want to test that other employees…
Unable to see 'Import' button in Key Vault secret option
Hi folks, I am trying to upload/ renew a secret object in Key Vault, but I am unable to see import certificate option there. I certainly can recall it was previously there but now it's not. Have there been any changes made to the KV operations recently…
Cannot Access Azure Key Vault from Python script via 'os.environ["VAULT_URL]" - Key Error: "VAULT_URL"
I am having trouble accessing my Azure Key vault from my python script (debugging before deployment), the script cannot find the environment variable "VAULT_URL" even though I have set this in my environment variables on my Function App on…
Azure Data factory - jwt token using Key Vault certificate
There doesn't appear to be a lot of help on the internet for this so hopefully someone has managed to achieve this! We need to create a JWT token to pass on for authentication to Salesforce. A certificate has been created and placed within our Key Vault.…
Is there any way to assign an name identifier to Firewall IP address entries?
When I add Firewall exclusions to my Azure SQL Databases, I have options to set a Rule name along with start/end IP addresses. This makes it very useful to identify what an IP address relates to and work out if its still valid or needs to be updated (we…
SAML certificate rotation
Hi, We have noticed that recently the discovery endpoint for SAML https://login.microsoftonline.com/[TENANT-ID]/federationmetadata/2007-06/federationmetadata.xml started alternating between two valid keys prior final rotation. We'd like to know how long…
Create an azure key vault certificate with EC P-256K key, and with a subject CN=xxxx, do not save the subject info.
Create an azure key vault certificate with EC P-256K key, and with a subject CN=xxxx, do not save the subject info. But with a RSA2048 yes, I don't understand why do not save the subject common name or any information you put for that certificate
How to connect Azure Dev Ops to Key Vault, where Key Vault has public access disabled
I am trying to download key vault secrets through a YAML pipeline on Azure Dev Ops. I have the following set up: Key Vault is set up to have all public access disabled The Service principal for the Service Connection in my DevOps Project settings has…
Suitable backup location for the Certificate and DEK backup for a database with Transparent Data Encryption Enabled on SQL Server
I have SQL instances that will have TDE enabled soon and I need a backup option for the Certificate and DEK after the database has been encrypted, I don't want to have the files on the same location where the databases are hosted so I thought key vault…
Windows 11 BitLocker isn't offering to save external drive BitLocker keys to Azure AD for global admin, only for internal drives
Windows 11 BitLocker isn't offering to save external drive BitLocker keys to the Azure Key Vault for a Global Admin with Entera Admin, but it does save it for internal drives. The PCs are joined to the Azue AD Domain and for internal drives BitLocker…
How can we export metadata of Keyvault's Key/Secret/Certificate to Log Analytics Workspace
I have seen log categories in KeyVault but I don't find that we can export metadata of Key/Secret/Certificate can be exported into log analytics workspace. Admin actions on them is fine like create/delete, I can get them but I would like to capture all…
Unable to access keyvault resource with given credentials
I'm following along the Verifiable Credentials tutorial but when the call to get the manifest is made in the sample code, I get this error: {"requestId":"a3729fc547c6cc4bf2f6c991749620b1","date":"Tue, 19 Mar 2024…
I can bind keyvault certificate to webapp in US_MIDDLE but not US_EAST.
I am moving from US_MIDDLE to US_EAST but having issue to bind certificates to the new webapp in US_EAST. I had a 3-hours service window yesterday where I moved the database but were unable to enable the new app so I had to revert DNS settings to the old…
Event Grid (UNMATCHED EVENT)
Hey there, I have configured a event grid subscription on KeyVault to a function app , Where I have selected the event to set [ Microsoft.KeyVault.secretExpired ] , so when ever i have tried to create a secret with expiry within next 2 mins , it…
Regarding Keyvaults
Is there any scripting that can be done via PowerShell to restore KeyVault or its automatic fail over for GRS enabled Keyvaults?
jwt signature does not match locally computed signature. jwt validity cannot be asserted using azure variable group
HI Team, We are using Azure Variable Group to save our static JWT token and while deployment its import in application.yml file. this token we are using for internal service call but we are getting below error while try to validate JWT token. "jwt…
Can't import pem certificate in key vault
I'm trying to add a .pem certificate to my key vault, it seems to work but when I try to add the certificate to my CDN secrets I get the following error: Failed to create the secret 'mykeyvault-webcertificate-latest'. Error: The secret contains an…
DefaultAzureCredential says ManagedIdentityCredential not assigned to resource but IT IS
I have created a User-Assigned Managed Identity in the Azure Portal. It is connected to: a batch account, a data factory, and a logic app I have also granted this Managed Identity the Key Vault Secret Reader role to my Azure Key Vault Lastly, I…
Azure Key Vault integration with spring boot project with two user identities attached to the VM
We are followed the below documentation for integrating azure key vault in our spring boot project https://learn.microsoft.com/en-us/answers/questions/1407131/spring-boot-application-azure-key-vault-client-cer When we deployed our spring boot app on…