Accessing Azure Key Vault by using x509 certificate authentication
Hi there, may i know if there is a way to use x509 certificate as authentication to access Azure Key Vault ?
Access policies for Keyvaults decommission
Hello, I'm having a question relating Access policies. Is it planned into some Azure plan to decommission Access policies for Keyvaults ? If yes could you tell/give the dead lines and official communication pages ? Thanks, JR
Is there a simple example of how to connect my MVC Web App to Azure KeyVault and extract my connect string?
I am using DotNet Core 8.0 and trying to use KeyVault from a non-Azure hosted WebApp. I am trying to use secrets for my database connect strings. Is there a simple example of how to connect my MVC Web App to Azure KeyVault and extract my connect…
Access to Azure Keyvault inside Azure Container Instance WebApi
I would like to retrive the keyvault secrets using managed identity in web Api. Creates Web APi with DefaultAzureCredential Able to retrive the data using aboe code. Built image and pushed into Azure container registry Created azure container…
Cost Implications of Azure Key Vault with Diagnostic Settings and High Volume of Secrets
Hi, I have a specific use case for Azure Key Vault and need some clarification on cost implications. Here are the details of my scenario: Diagnostic Settings: I aim to enable diagnostic settings for Azure Key Vault and store the logs in Log Analytics.…
Generate dynamic passwords with Azure Key Vault for Postgresql Database running in Azure VM
Hey guys, I have my open source postgresql deployed in Azure VMs. I would like to generate dynamic passwords for the database users using Azure Key Vault. Is it typically possible? If yes, can you please help down with steps or redirect me to right…
How to secure APIM subscription key when calling APIs from Web Client Application
Hello, What are some secure ways to pass the Azure API Management (APIM) subscription key while calling APIs, without exposing it in the browser network tab? Passing the key inside the header is not ideal as it can be exposed in the network tab. Would…
Effect of MC792991 Disablement of Symmetric keys for Microsoft Entra first-party applications Service Principals
Hello Team, Greetings! This is Joni. Due to the Microsoft post as follows, a partner need to address how this affects to end users' resources and workloads. Disablement of Symmetric keys for Microsoft Entra first-party applications Service Principals…
Using key vault to customize the encryption keys at rest for Azure Database PostgreSQL imply any cost on for encrypt/decrypt operations?
Hi, Based on the pricing for Key Vault, encryption/decryption operations via API are charged. My question is, does this also imply cost for PostgreSQL DBaaS using custom encryption keys stored in Azure Key Vault or the cost for encrypting/decrypting…
What are the best Practices for Storing Privileged Credentials in Azure Key Vault
Hi, I would like to leverage Azure Key Vault to store some privileged credentials (such as Linux root accounts or AD privileged accounts) and share them with specific teams. Since there are some naming restrictions in Azure Key Vault and secrets, such as…
ClientCertificateCredential authentication failed: AADSTS53003: Access has been blocked by Conditional Access policies. The access policy does not allow token issuance.
I am trying to authenticate locally without client_secret to another app deployed in azure. I have uploaded a certificate which is also present in the keyvault to app registration. Here is the error i see ClientCertificateCredential authentication…
[bug-keyvault-networking] - Keyvault networking not working properly
Steps to reproduce the bug: 1.Create Keyvault with default option 2.Add public ip in "Allow public access from specific virtual networks and IP addresses" & also add virtual network and apply. refresh the page 2-3 times , azure…
Microsoft Sales hub for partners t
Hello, I am looking for a Microsoft Sales hub for partners to access powerpoint presentations for customers, as Azure Key Vault, and other Microsoft/Azure services, boiler plate information, competitive matrix, reference architecture etc.
Issue deploying using Azure CLI with client secret authentication in an Azure DevOps YAML file
We are having issues deploying a BICEP template with Azure CLI in our CI/CD pipeline using a client secret authentication method. The previous key had expired, so we cycled the client secret, added it to the Key Vault for our test environment, and…
How to connect different Azure Id with Visual Studio 2022 Id
Can other people connect and use it with one ID(Tenant ID or Subscription ID, ...)? ( For Test Purpose ) If so, how can this be done? Thank you.
What other advantages does using Azure Key Vault have over on-prem?
For four months I've been developing a proof-of-concept console app, which uses Azure Key Vault for storing secrets. I've got it working fine. I also like the fact that Key Vault can be used for other things, such as keys and certificates. I believe that…
How to get Azure key/key vault region?
In cross tenant scenario, like this, how to check the key region with only key/key vault url? I want to use it in create disk encryption set, but it require in same region. And it cost a lot, take a while to create. is there any way to get the region?…
cross-tenent application security concern
There is an cross tenant application, which used by customer tenant A and customer tenant B, both A and B grant permission to the Application to their own resources RA, RB. Does It possible tenant A be able access resource RB by the Application? In…
Application running in AKS gets 403 forbidden by rbac when using service principal to fetch secret in keyvault.
The service principal has key vault secrets user in the resource group where the keyvault is. The pod authenticates with az --service-principal -n [app_id] -p [secret] --tenant [tenant id] The service principal have had keyvault admin role, but with…
Azure Devops Pipeline failing on azure key vault
We get this error : fail: AzureSignTool.SignCommand[0] Failed to retrieve certificate *** from Azure Key Vault. Please verify the name of the certificate and the permissions to the certificate. Error message: ClientSecretCredential authentication…