Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,145 questions
0 answers
How to secure APIM subscription key when calling APIs from Web Client Application
Hello, What are some secure ways to pass the Azure API Management (APIM) subscription key while calling APIs, without exposing it in the browser network tab? Passing the key inside the header is not ideal as it can be exposed in the network tab. Would…
asked 2024-05-21T20:24:47.8033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 70%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Abhishek Sinha
21
Reputation points
asked 2024-05-21T20:24:47.8033333+00:00
Abhishek Sinha
21
Reputation points
0 answers
Have an 500 error using Azure Key&Vault when deploy IIS
Hello. First of all, I succeed connecting between my Asp .NET Core 8 MVC project and Azure Key&Vault in local environment. However, I got an 500 error after deploy into IIS in my computer. What I want to do: I just want to test that other employees…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 19%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
0 answers
Unable to see 'Import' button in Key Vault secret option
Hi folks, I am trying to upload/ renew a secret object in Key Vault, but I am unable to see import certificate option there. I certainly can recall it was previously there but now it's not. Have there been any changes made to the KV operations recently…
asked 2024-05-14T04:38:49.35+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 7.000000000000001%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAP%3C/text%3E%3C/svg%3E)
Apurva Pathak
315
Reputation points
commented 2024-05-14T05:13:43.0666667+00:00
Deepanshu katara
5,375
Reputation points
0 answers
Cannot Access Azure Key Vault from Python script via 'os.environ["VAULT_URL]" - Key Error: "VAULT_URL"
I am having trouble accessing my Azure Key vault from my python script (debugging before deployment), the script cannot find the environment variable "VAULT_URL" even though I have set this in my environment variables on my Function App on…
asked 2024-05-09T15:45:41.14+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 53%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Aidan Goldie
0
Reputation points
commented 2024-05-09T18:27:00.6433333+00:00
James Hamil
22,186
Reputation points Microsoft Employee
0 answers
Azure Data factory - jwt token using Key Vault certificate
There doesn't appear to be a lot of help on the internet for this so hopefully someone has managed to achieve this! We need to create a JWT token to pass on for authentication to Salesforce. A certificate has been created and placed within our Key Vault.…
asked 2024-05-02T23:09:06.92+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 30%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERA%3C/text%3E%3C/svg%3E)
Ryan Abbey
0
Reputation points
commented 2024-05-07T23:04:18.92+00:00
Ryan Abbey
0
Reputation points
0 answers
Is there any way to assign an name identifier to Firewall IP address entries?
When I add Firewall exclusions to my Azure SQL Databases, I have options to set a Rule name along with start/end IP addresses. This makes it very useful to identify what an IP address relates to and work out if its still valid or needs to be updated (we…
asked 2024-04-09T10:20:37.3533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 11%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDB%3C/text%3E%3C/svg%3E)
Dom Barnes
11
Reputation points
commented 2024-04-15T13:30:05.74+00:00
Dom Barnes
11
Reputation points
0 answers
SAML certificate rotation
Hi, We have noticed that recently the discovery endpoint for SAML https://login.microsoftonline.com/[TENANT-ID]/federationmetadata/2007-06/federationmetadata.xml started alternating between two valid keys prior final rotation. We'd like to know how long…
asked 2024-04-05T18:07:20.4366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 24%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Simo
0
Reputation points
commented 2024-04-10T06:07:58.49+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Givary-MSFT
28,571
Reputation points Microsoft Employee
0 answers
Create an azure key vault certificate with EC P-256K key, and with a subject CN=xxxx, do not save the subject info.
Create an azure key vault certificate with EC P-256K key, and with a subject CN=xxxx, do not save the subject info. But with a RSA2048 yes, I don't understand why do not save the subject common name or any information you put for that certificate
asked 2024-02-07T14:43:53.25+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 13%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EET%3C/text%3E%3C/svg%3E)
Eduard Tomàs
25
Reputation points
commented 2024-04-08T13:21:01.89+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 78%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYZ%3C/text%3E%3C/svg%3E)
Yuanhao Zhu
0
Reputation points
0 answers
How to connect Azure Dev Ops to Key Vault, where Key Vault has public access disabled
I am trying to download key vault secrets through a YAML pipeline on Azure Dev Ops. I have the following set up: Key Vault is set up to have all public access disabled The Service principal for the Service Connection in my DevOps Project settings has…
asked 2024-04-02T08:00:53.0666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 77%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAE%3C/text%3E%3C/svg%3E)
Ahmed Elsayed
0
Reputation points Microsoft Employee
commented 2024-04-04T15:29:39.16+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Sandeep G-MSFT
14,916
Reputation points Microsoft Employee
0 answers
Suitable backup location for the Certificate and DEK backup for a database with Transparent Data Encryption Enabled on SQL Server
I have SQL instances that will have TDE enabled soon and I need a backup option for the Certificate and DEK after the database has been encrypted, I don't want to have the files on the same location where the databases are hosted so I thought key vault…
asked 2024-03-28T09:47:34.0066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 96%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETP%3C/text%3E%3C/svg%3E)
Themba Phiri
0
Reputation points
commented 2024-03-29T02:58:22.2+00:00
CosmogHong-MSFT
23,561
Reputation points Microsoft Vendor
0 answers
Windows 11 BitLocker isn't offering to save external drive BitLocker keys to Azure AD for global admin, only for internal drives
Windows 11 BitLocker isn't offering to save external drive BitLocker keys to the Azure Key Vault for a Global Admin with Entera Admin, but it does save it for internal drives. The PCs are joined to the Azue AD Domain and for internal drives BitLocker…
asked 2024-03-24T18:27:48.7866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 93%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMF%3C/text%3E%3C/svg%3E)
Matthew Filler
0
Reputation points
commented 2024-03-24T19:13:51.56+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 21%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Denmis
0
Reputation points
0 answers
How can we export metadata of Keyvault's Key/Secret/Certificate to Log Analytics Workspace
I have seen log categories in KeyVault but I don't find that we can export metadata of Key/Secret/Certificate can be exported into log analytics workspace. Admin actions on them is fine like create/delete, I can get them but I would like to capture all…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 49%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
0 answers
Unable to access keyvault resource with given credentials
I'm following along the Verifiable Credentials tutorial but when the call to get the manifest is made in the sample code, I get this error: {"requestId":"a3729fc547c6cc4bf2f6c991749620b1","date":"Tue, 19 Mar 2024…
asked 2024-03-19T12:41:05.54+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 81%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Gilbert Musengi
0
Reputation points
commented 2024-03-19T14:12:00.65+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 24%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Martin Therkelsen
1,405
Reputation points MVP
0 answers
I can bind keyvault certificate to webapp in US_MIDDLE but not US_EAST.
I am moving from US_MIDDLE to US_EAST but having issue to bind certificates to the new webapp in US_EAST. I had a 3-hours service window yesterday where I moved the database but were unable to enable the new app so I had to revert DNS settings to the old…
asked 2024-03-18T14:08:29.5066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 0%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDF%3C/text%3E%3C/svg%3E)
David Fahlander
0
Reputation points
commented 2024-03-19T11:18:45.6566667+00:00
Akshay-MSFT
16,436
Reputation points Microsoft Employee
0 answers
Event Grid (UNMATCHED EVENT)
Hey there, I have configured a event grid subscription on KeyVault to a function app , Where I have selected the event to set [ Microsoft.KeyVault.secretExpired ] , so when ever i have tried to create a secret with expiry within next 2 mins , it…
asked 2024-03-09T04:50:00.6633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 33%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPR%3C/text%3E%3C/svg%3E)
PRADEEP RAGUL S
0
Reputation points
commented 2024-03-09T06:05:56.1866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 63%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
RevelinoB
2,775
Reputation points
0 answers
Regarding Keyvaults
Is there any scripting that can be done via PowerShell to restore KeyVault or its automatic fail over for GRS enabled Keyvaults?
asked 2024-02-23T12:20:07.1133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 48%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3E3%3C/text%3E%3C/svg%3E)
37821879
85
Reputation points
commented 2024-02-23T12:41:22.07+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 38%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Marcin Policht
13,175
Reputation points MVP
0 answers
jwt signature does not match locally computed signature. jwt validity cannot be asserted using azure variable group
HI Team, We are using Azure Variable Group to save our static JWT token and while deployment its import in application.yml file. this token we are using for internal service call but we are getting below error while try to validate JWT token. "jwt…
asked 2024-02-09T16:28:25.9633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(76.8, 82%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELV%3C/text%3E%3C/svg%3E)
lalit vats
0
Reputation points
commented 2024-02-13T23:58:58.0866667+00:00
lalit vats
0
Reputation points
0 answers
Can't import pem certificate in key vault
I'm trying to add a .pem certificate to my key vault, it seems to work but when I try to add the certificate to my CDN secrets I get the following error: Failed to create the secret 'mykeyvault-webcertificate-latest'. Error: The secret contains an…
asked 2024-01-10T22:33:10.5733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 16%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECD%3C/text%3E%3C/svg%3E)
Christian D Alessandro
5
Reputation points
commented 2024-02-09T14:19:54.61+00:00
Christian D Alessandro
5
Reputation points
0 answers
DefaultAzureCredential says ManagedIdentityCredential not assigned to resource but IT IS
I have created a User-Assigned Managed Identity in the Azure Portal. It is connected to: a batch account, a data factory, and a logic app I have also granted this Managed Identity the Key Vault Secret Reader role to my Azure Key Vault Lastly, I…
asked 2023-08-15T16:03:00.1466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 24%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKN%3C/text%3E%3C/svg%3E)
Keatra Nesbitt
15
Reputation points
commented 2024-01-31T22:14:35.3566667+00:00
Alfredo Revilla - Upwork Top Talent | IAM SWE SWA
27,331
Reputation points
0 answers
Azure Key Vault integration with spring boot project with two user identities attached to the VM
We are followed the below documentation for integrating azure key vault in our spring boot project https://learn.microsoft.com/en-us/answers/questions/1407131/spring-boot-application-azure-key-vault-client-cer When we deployed our spring boot app on…
asked 2024-01-31T18:12:40.3033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 92%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGS%3C/text%3E%3C/svg%3E)
Guduru, Sravan Kumar
21
Reputation points
commented 2024-01-31T22:06:30.77+00:00
Alfredo Revilla - Upwork Top Talent | IAM SWE SWA
27,331
Reputation points