Azure Portal having Authentication Issues
Error Message: The portal is having issues getting an authentication token. The experience rendered may be degraded. Additional information from the call to get a token: Extension: Microsoft_Azure_Monitoring Resource: loganalyticsapi Details: The…
Creating a Managed HSM in Azure Key Vault
Hi All, I am exploring the Managed HSM offering from Azure Key Vault and was not able to spot the same on the UI. Isn't there a way to create a Managed HSM and Keys within it using the UI? Just like how we create an Azure Key Vault and keys.
Unable to purge key in keyvault and thereafter unable to purge keyvault either
I am the Global admin on the AD tenant and the key vault access policy has all permissions to my user including purge. This command worked: Remove-AzKeyVaultKey -Name <key_name> -VaultName <kv_name> Then this fails: …
Getting "Caller needs data action" while enabling Azure Disk Encryption on Windows VM.
Hello All, I am getting below error while trying to enable Azure Disk Encryption for my VM. I tried with recreating VM and Key Vault both but still getting same issue. I do have full rights in Key Vault access policy and its also enabled for…
Azure KeyVault Extension for Linux not downloading intermediate certificates
I successfully configured the Azure KeyVault Extension on my Ubuntu Linux machine. The observed certificate in the vault is downloaded to the default location in /var/lib/waagent/Microsoft.Azure.KeyVault, but I'm missing/expecting the CA root and…
What is the difference between a key and a secret in Azure Key Vault?
What is the difference between a key and a secret in Azure Key Vault? Note: As we migrate from MSDN, this question has been posted by an Azure Cloud Engineer as a frequently asked question Source: Key Vault
Difference- HSM protected keys in Vaults (VS) HSM-protected keys in Managed HSM
While creating Azure VMs, we can keep the SSE encryption keys using Customer Managed Keys. We have 2 options when storing these CMK keys in HSM namely ( i know azure keyvault software based also supports CMK, but that is not my question . Mine is…
Built-in azure policy definition for Key vault name length is > 64 character which is limit in microsoft Azure policy as well as Git
We are planning to use Azure built-in policy via Azure Devops pipeline for assignment, but it is failing due to Name length exceed. Please any one support me how to handle this in our Azure devops pipeline for assignment. Error from Azure devops…
Need help on parameterization of Integration Runtime and Azure Key vault Secrets on link service in Azure Data Factory pipeline
Hi, I have to migrate 90 clients database from Azure Managed Instances databases to Azure VM Data Servers. For the above requirement, I have created the below resources * 90 Azure Data Factory Pipelines * 90 self-hosted integration runtime as each…
Integrating Ajure Key Vault RBAC with Ajure DevOps
The specified Azure service connection needs to have "Get, List" secret management permissions on the selected key vault. Click "Authorize" to enable Azure Pipelines to set these permissions or maJust in time To link an Azure key…
Token-based login to SQL DB fails from App Service, works fine locally.
Using an Azure access token to connect to SQL DB works fine when running locally under Visual Studio. Deploying the web app to Azure App Service is fine. The deployed web app is unable to connect to the SQL DB: System.Data.SqlClient.SqlException…
Azure key vault requirement for code signing cert
Hello, Due to the updated requirements for Code-Signing certificates, I am currently searching for a cost-effective cloud HSM solution. However, I would like to double-confirm that for signing Windows Code-Signing certificates, the option "Managed…
What are Azure Key Vault's soft-delete and purge protection features?
Please explain how Azure Key Vault's soft-delete and purge protection features work. How can I recover vaults that have been soft-deleted? Why do I need to enable soft-delete in order to use purge protection? Note: As we migrate from MSDN, this…
Service Principal Secret Expiration - Automation
This is a design question Right now when service principal credentials are expired, we have to (1) Regenerate (2) Update the same in keyvault (3) Update the same in wherever the SPN is used. Right now i am doing this manually for each SPN. Is there…
Can we access the keyvaults keys from Tenant 1 to the Tenant 2?
Hi Team, We are trying to implement the scenario of BYOK where the Customer will have their keys and its key material in their azure account(Tenant 2), Now we need to access that key from a different account(Tenant1). On highlevel, Keyvault (tenant1)…
I don't have the permission to view the contents in my own azure key vault
Today, I created azure key vault. However I don't have the permission to see the contents of keys and secrets created by me. I have assigned myself "owner" role. Still no luck. MaY I know why I am getting forbidden from access my own resources…
Failing to create blob container from my C# program while using Access Key Connection string.
I started exploring Azure. I set up my Azure account, Resource group, created storage account. I try to create Blob container from my C# program: I am using 'Connection string' from Storage account Access key to access the Storage account and create…
Download the public key in .PEM format from Azure Key Vault.
Is there a python sdk call to download the publickey in .pem format from the azure keyvault. Yes, we can download the publickey using the Az CLI "az keyvault key download " and directly using the azure portal, but we are looking for the…
Why am I receiving the following pipeline error?
We're currently in the process of transferring our user creation scripts to Azure DevOps to allow them to be deployed automatically when triggered. To allow successful connection to Azure I have used the MgGraph module as per the following: $body = @{ …
Can you create a new version of a secret through Azure CLI?
Is it possible to create a new version of a secret in a Key Vault through Azure CLI? I am trying to update all my secrets in a vault with a new version and an expiration date but using az keyvault secret set only updates my current version of the…