Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,158 questions
5 answers
One of the answers was accepted by the question author.
Azure Portal having Authentication Issues
Error Message: The portal is having issues getting an authentication token. The experience rendered may be degraded. Additional information from the call to get a token: Extension: Microsoft_Azure_Monitoring Resource: loganalyticsapi Details: The…
asked 2024-02-25T00:38:13.9266667+00:00
Rajoli Hari Krishna
296
Reputation points
answered 2024-02-27T17:08:44.97+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 23%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENF%3C/text%3E%3C/svg%3E)
Nick Fritsche
0
Reputation points
5 answers
One of the answers was accepted by the question author.
Creating a Managed HSM in Azure Key Vault
Hi All, I am exploring the Managed HSM offering from Azure Key Vault and was not able to spot the same on the UI. Isn't there a way to create a Managed HSM and Keys within it using the UI? Just like how we create an Azure Key Vault and keys.
asked 2022-09-28T09:31:19.083+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 89%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Bharat Shivram
21
Reputation points
answered 2022-09-28T09:58:27.393+00:00
JimmySalian-2011
41,961
Reputation points
5 answers
One of the answers was accepted by the question author.
Unable to purge key in keyvault and thereafter unable to purge keyvault either
I am the Global admin on the AD tenant and the key vault access policy has all permissions to my user including purge. This command worked: Remove-AzKeyVaultKey -Name <key_name> -VaultName <kv_name> Then this fails: …
asked 2020-06-20T03:04:44.84+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 51%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Ankur Soni @4dx
26
Reputation points
commented 2022-04-12T22:02:37.833+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 32%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVA%3C/text%3E%3C/svg%3E)
Victor Adeyanju
1
Reputation point
5 answers
One of the answers was accepted by the question author.
Getting "Caller needs data action" while enabling Azure Disk Encryption on Windows VM.
Hello All, I am getting below error while trying to enable Azure Disk Encryption for my VM. I tried with recreating VM and Key Vault both but still getting same issue. I do have full rights in Key Vault access policy and its also enabled for…
asked 2021-09-29T11:24:53.267+00:00
Amjad Nagori
286
Reputation points
commented 2022-02-04T13:36:52.097+00:00
Amjad Nagori
286
Reputation points
5 answers
One of the answers was accepted by the question author.
Azure KeyVault Extension for Linux not downloading intermediate certificates
I successfully configured the Azure KeyVault Extension on my Ubuntu Linux machine. The observed certificate in the vault is downloaded to the default location in /var/lib/waagent/Microsoft.Azure.KeyVault, but I'm missing/expecting the CA root and…
asked 2021-01-06T12:09:54.337+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 44%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJP%3C/text%3E%3C/svg%3E)
Jent Paul Zijlstra
36
Reputation points
answered 2022-02-02T17:54:06.043+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 10%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Dartdoka
1
Reputation point
4 answers
One of the answers was accepted by the question author.
What is the difference between a key and a secret in Azure Key Vault?
What is the difference between a key and a secret in Azure Key Vault? Note: As we migrate from MSDN, this question has been posted by an Azure Cloud Engineer as a frequently asked question Source: Key Vault
asked 2020-05-06T20:45:03.78+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 44%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Saurabh Sharma
23,771
Reputation points Microsoft Employee
edited the question 2023-11-20T20:19:15.2733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Marilee Turscak-MSFT
35,541
Reputation points Microsoft Employee
4 answers
One of the answers was accepted by the question author.
Difference- HSM protected keys in Vaults (VS) HSM-protected keys in Managed HSM
While creating Azure VMs, we can keep the SSE encryption keys using Customer Managed Keys. We have 2 options when storing these CMK keys in HSM namely ( i know azure keyvault software based also supports CMK, but that is not my question . Mine is…
asked 2023-02-27T12:55:45.9466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 71%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
MS Techie
2,681
Reputation points
answered 2023-08-11T04:35:22.1333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 39%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
Senthil Kumar Thangarajan
0
Reputation points
4 answers
One of the answers was accepted by the question author.
Built-in azure policy definition for Key vault name length is > 64 character which is limit in microsoft Azure policy as well as Git
We are planning to use Azure built-in policy via Azure Devops pipeline for assignment, but it is failing due to Name length exceed. Please any one support me how to handle this in our Azure devops pipeline for assignment. Error from Azure devops…
asked 2021-07-06T05:46:20.88+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 9%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENB%3C/text%3E%3C/svg%3E)
Naveen Begur nagaraj
121
Reputation points
commented 2021-07-07T13:29:10.787+00:00
Siva-kumar-selvaraj
15,576
Reputation points
4 answers
One of the answers was accepted by the question author.
Need help on parameterization of Integration Runtime and Azure Key vault Secrets on link service in Azure Data Factory pipeline
Hi, I have to migrate 90 clients database from Azure Managed Instances databases to Azure VM Data Servers. For the above requirement, I have created the below resources * 90 Azure Data Factory Pipelines * 90 self-hosted integration runtime as each…
asked 2020-12-29T17:41:43.283+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 57.00000000000001%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH0%3C/text%3E%3C/svg%3E)
HemantSudehely-0557
266
Reputation points
commented 2021-01-08T10:42:37.77+00:00
Nandan Hegde
29,996
Reputation points MVP
3 answers
One of the answers was accepted by the question author.
Integrating Ajure Key Vault RBAC with Ajure DevOps
The specified Azure service connection needs to have "Get, List" secret management permissions on the selected key vault. Click "Authorize" to enable Azure Pipelines to set these permissions or maJust in time To link an Azure key…
asked 2022-10-15T14:20:05.31+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 61%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETH%3C/text%3E%3C/svg%3E)
Tagvor Hovsepyan
61
Reputation points
answered 2024-05-14T02:52:49.05+00:00
Ahmad Pirani
6
Reputation points
3 answers
One of the answers was accepted by the question author.
Token-based login to SQL DB fails from App Service, works fine locally.
Using an Azure access token to connect to SQL DB works fine when running locally under Visual Studio. Deploying the web app to Azure App Service is fine. The deployed web app is unable to connect to the SQL DB: System.Data.SqlClient.SqlException…
asked 2020-07-28T09:34:02.19+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 85%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
dunderhead
106
Reputation points
commented 2024-05-04T13:07:53.85+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 18%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EIZ%3C/text%3E%3C/svg%3E)
ivan zhukov
10
Reputation points
3 answers
One of the answers was accepted by the question author.
Azure key vault requirement for code signing cert
Hello, Due to the updated requirements for Code-Signing certificates, I am currently searching for a cost-effective cloud HSM solution. However, I would like to double-confirm that for signing Windows Code-Signing certificates, the option "Managed…
asked 2024-01-19T04:17:51.5333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(38.4, 95%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAC%3C/text%3E%3C/svg%3E)
Andrew Chan
20
Reputation points
answered 2024-04-10T17:11:52.2166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 51%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Alexander Skvortcov
0
Reputation points
3 answers
One of the answers was accepted by the question author.
What are Azure Key Vault's soft-delete and purge protection features?
Please explain how Azure Key Vault's soft-delete and purge protection features work. How can I recover vaults that have been soft-deleted? Why do I need to enable soft-delete in order to use purge protection? Note: As we migrate from MSDN, this…
asked 2020-05-06T21:00:49.01+00:00
Marilee Turscak-MSFT
35,541
Reputation points Microsoft Employee
answered 2024-04-06T21:31:27.4766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 41%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Shubham Saini
30
Reputation points
3 answers
One of the answers was accepted by the question author.
Service Principal Secret Expiration - Automation
This is a design question Right now when service principal credentials are expired, we have to (1) Regenerate (2) Update the same in keyvault (3) Update the same in wherever the SPN is used. Right now i am doing this manually for each SPN. Is there…
asked 2022-05-18T18:29:16.74+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 7.000000000000001%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERA%3C/text%3E%3C/svg%3E)
Rajesh Ambakkat
216
Reputation points
answered 2024-03-02T00:53:50.7+00:00
Greg Low
1,575
Reputation points Microsoft Regional Director
3 answers
One of the answers was accepted by the question author.
Can we access the keyvaults keys from Tenant 1 to the Tenant 2?
Hi Team, We are trying to implement the scenario of BYOK where the Customer will have their keys and its key material in their azure account(Tenant 2), Now we need to access that key from a different account(Tenant1). On highlevel, Keyvault (tenant1)…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 6%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
3 answers
One of the answers was accepted by the question author.
I don't have the permission to view the contents in my own azure key vault
Today, I created azure key vault. However I don't have the permission to see the contents of keys and secrets created by me. I have assigned myself "owner" role. Still no luck. MaY I know why I am getting forbidden from access my own resources…
asked 2023-11-11T15:35:37.2633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 75%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Sangram Mohanty
46
Reputation points
accepted 2023-12-22T06:23:59.41+00:00
Sangram Mohanty
46
Reputation points
3 answers
One of the answers was accepted by the question author.
Failing to create blob container from my C# program while using Access Key Connection string.
I started exploring Azure. I set up my Azure account, Resource group, created storage account. I try to create Blob container from my C# program: I am using 'Connection string' from Storage account Access key to access the Storage account and create…
asked 2021-11-15T07:03:08.393+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 11%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
JSlaby
26
Reputation points
answered 2023-11-07T11:14:33.0833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 80%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAL%3C/text%3E%3C/svg%3E)
Adrian Lluna-Dolz
0
Reputation points
3 answers
One of the answers was accepted by the question author.
Download the public key in .PEM format from Azure Key Vault.
Is there a python sdk call to download the publickey in .pem format from the azure keyvault. Yes, we can download the publickey using the Az CLI "az keyvault key download " and directly using the azure portal, but we are looking for the…
asked 2022-10-06T21:11:03.523+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 13%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKR%3C/text%3E%3C/svg%3E)
Kesar, Raghav
31
Reputation points
edited the question 2023-09-05T17:18:49.6866667+00:00
JamesTran-MSFT
36,496
Reputation points Microsoft Employee
3 answers
One of the answers was accepted by the question author.
Why am I receiving the following pipeline error?
We're currently in the process of transferring our user creation scripts to Azure DevOps to allow them to be deployed automatically when triggered. To allow successful connection to Azure I have used the MgGraph module as per the following: $body = @{ …
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 27%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENT%3C/text%3E%3C/svg%3E)
3 answers
One of the answers was accepted by the question author.
Can you create a new version of a secret through Azure CLI?
Is it possible to create a new version of a secret in a Key Vault through Azure CLI? I am trying to update all my secrets in a vault with a new version and an expiration date but using az keyvault secret set only updates my current version of the…
asked 2023-06-12T15:20:58.3966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 12%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVA%3C/text%3E%3C/svg%3E)
Valenzuela, Anthony O
20
Reputation points
answered 2023-06-15T18:02:40.9066667+00:00
Valenzuela, Anthony O
20
Reputation points