Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,158 questions
1 answer
One of the answers was accepted by the question author.
Accessing Azure Key Vault by using x509 certificate authentication
Hi there, may i know if there is a way to use x509 certificate as authentication to access Azure Key Vault ?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 72%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFL%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Access policies for Keyvaults decommission
Hello, I'm having a question relating Access policies. Is it planned into some Azure plan to decommission Access policies for Keyvaults ? If yes could you tell/give the dead lines and official communication pages ? Thanks, JR
asked 2024-06-05T13:45:15.0833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 62%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJR%3C/text%3E%3C/svg%3E)
Jean Rene BLAIVE
20
Reputation points
accepted 2024-06-06T07:02:53.86+00:00
Jean Rene BLAIVE
20
Reputation points
1 answer
One of the answers was accepted by the question author.
Is there a simple example of how to connect my MVC Web App to Azure KeyVault and extract my connect string?
I am using DotNet Core 8.0 and trying to use KeyVault from a non-Azure hosted WebApp. I am trying to use secrets for my database connect strings. Is there a simple example of how to connect my MVC Web App to Azure KeyVault and extract my connect…
asked 2024-06-03T18:52:20.49+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 57.00000000000001%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETP%3C/text%3E%3C/svg%3E)
Tim Philomeno
20
Reputation points
accepted 2024-06-07T18:57:48.9466667+00:00
Tim Philomeno
20
Reputation points
1 answer
One of the answers was accepted by the question author.
Access to Azure Keyvault inside Azure Container Instance WebApi
I would like to retrive the keyvault secrets using managed identity in web Api. Creates Web APi with DefaultAzureCredential Able to retrive the data using aboe code. Built image and pushed into Azure container registry Created azure container…
asked 2024-06-03T18:27:48.5266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 84%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBK%3C/text%3E%3C/svg%3E)
Balanjaneyulu Kantu (Quadrant Technologies)
20
Reputation points
accepted 2024-06-12T03:59:16.5166667+00:00
Balanjaneyulu Kantu (Quadrant Technologies)
20
Reputation points
1 answer
One of the answers was accepted by the question author.
Cost Implications of Azure Key Vault with Diagnostic Settings and High Volume of Secrets
Hi, I have a specific use case for Azure Key Vault and need some clarification on cost implications. Here are the details of my scenario: Diagnostic Settings: I aim to enable diagnostic settings for Azure Key Vault and store the logs in Log Analytics.…
asked 2024-05-29T15:40:03.97+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 63%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
Subhash Kumar Mahato
100
Reputation points
commented 2024-06-06T04:17:32.8933333+00:00
Subhash Kumar Mahato
100
Reputation points
2 answers
One of the answers was accepted by the question author.
Generate dynamic passwords with Azure Key Vault for Postgresql Database running in Azure VM
Hey guys, I have my open source postgresql deployed in Azure VMs. I would like to generate dynamic passwords for the database users using Azure Key Vault. Is it typically possible? If yes, can you please help down with steps or redirect me to right…
asked 2024-05-25T12:00:03.65+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 49%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
M, Anbazhagan
20
Reputation points
answered 2024-05-25T13:37:36.5233333+00:00
Vinodh247-1375
12,141
Reputation points
1 answer
One of the answers was accepted by the question author.
How to secure APIM subscription key when calling APIs from Web Client Application
Hello, What are some secure ways to pass the Azure API Management (APIM) subscription key while calling APIs, without exposing it in the browser network tab? Passing the key inside the header is not ideal as it can be exposed in the network tab. Would…
asked 2024-05-21T20:24:47.8033333+00:00
Abhishek Sinha
61
Reputation points
accepted 2024-05-24T02:19:26.5066667+00:00
Abhishek Sinha
61
Reputation points
2 answers
One of the answers was accepted by the question author.
Effect of MC792991 Disablement of Symmetric keys for Microsoft Entra first-party applications Service Principals
Hello Team, Greetings! This is Joni. Due to the Microsoft post as follows, a partner need to address how this affects to end users' resources and workloads. Disablement of Symmetric keys for Microsoft Entra first-party applications Service Principals…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 62%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EY%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 60%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Using key vault to customize the encryption keys at rest for Azure Database PostgreSQL imply any cost on for encrypt/decrypt operations?
Hi, Based on the pricing for Key Vault, encryption/decryption operations via API are charged. My question is, does this also imply cost for PostgreSQL DBaaS using custom encryption keys stored in Azure Key Vault or the cost for encrypting/decrypting…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,158 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
1,033 questions
Azure Database for PostgreSQL
Azure Database for PostgreSQL
An Azure managed PostgreSQL database service for app development and deployment.
905 questions
asked 2024-05-20T09:07:22.4+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 72%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJL%3C/text%3E%3C/svg%3E)
José Luis Rando Calvo
20
Reputation points
accepted 2024-05-20T13:54:12.81+00:00
José Luis Rando Calvo
20
Reputation points
2 answers
One of the answers was accepted by the question author.
What are the best Practices for Storing Privileged Credentials in Azure Key Vault
Hi, I would like to leverage Azure Key Vault to store some privileged credentials (such as Linux root accounts or AD privileged accounts) and share them with specific teams. Since there are some naming restrictions in Azure Key Vault and secrets, such as…
asked 2024-05-13T04:00:00.26+00:00
Subhash Kumar Mahato
100
Reputation points
accepted 2024-05-30T04:25:12.6233333+00:00
Subhash Kumar Mahato
100
Reputation points
1 answer
One of the answers was accepted by the question author.
ClientCertificateCredential authentication failed: AADSTS53003: Access has been blocked by Conditional Access policies. The access policy does not allow token issuance.
I am trying to authenticate locally without client_secret to another app deployed in azure. I have uploaded a certificate which is also present in the keyvault to app registration. Here is the error i see ClientCertificateCredential authentication…
asked 2024-05-08T02:59:48.7466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 39%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECS%3C/text%3E%3C/svg%3E)
Chaitra Shivanand Kulkarni (INFOSYS LIMITED)
45
Reputation points Microsoft Vendor
accepted 2024-05-16T15:51:47.4733333+00:00
Chaitra Shivanand Kulkarni (INFOSYS LIMITED)
45
Reputation points Microsoft Vendor
1 answer
One of the answers was accepted by the question author.
[bug-keyvault-networking] - Keyvault networking not working properly
Steps to reproduce the bug: 1.Create Keyvault with default option 2.Add public ip in "Allow public access from specific virtual networks and IP addresses" & also add virtual network and apply. refresh the page 2-3 times , azure…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 69%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Microsoft Sales hub for partners t
Hello, I am looking for a Microsoft Sales hub for partners to access powerpoint presentations for customers, as Azure Key Vault, and other Microsoft/Azure services, boiler plate information, competitive matrix, reference architecture etc.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAA%3C/text%3E%3C/svg%3E)
2 answers
One of the answers was accepted by the question author.
Issue deploying using Azure CLI with client secret authentication in an Azure DevOps YAML file
We are having issues deploying a BICEP template with Azure CLI in our CI/CD pipeline using a client secret authentication method. The previous key had expired, so we cycled the client secret, added it to the Key Vault for our test environment, and…
asked 2024-05-03T13:39:38.1066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 65%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJL%3C/text%3E%3C/svg%3E)
Jack Lazenby
20
Reputation points
accepted 2024-05-07T06:59:25.1833333+00:00
Jack Lazenby
20
Reputation points
1 answer
One of the answers was accepted by the question author.
How to connect different Azure Id with Visual Studio 2022 Id
Can other people connect and use it with one ID(Tenant ID or Subscription ID, ...)? ( For Test Purpose ) If so, how can this be done? Thank you.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 19%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
What other advantages does using Azure Key Vault have over on-prem?
For four months I've been developing a proof-of-concept console app, which uses Azure Key Vault for storing secrets. I've got it working fine. I also like the fact that Key Vault can be used for other things, such as keys and certificates. I believe that…
asked 2024-04-30T17:44:09.0266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 35%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFR%3C/text%3E%3C/svg%3E)
Falanga, Rod, DOH
100
Reputation points
accepted 2024-04-30T19:11:10.98+00:00
Falanga, Rod, DOH
100
Reputation points
1 answer
One of the answers was accepted by the question author.
How to get Azure key/key vault region?
In cross tenant scenario, like this, how to check the key region with only key/key vault url? I want to use it in create disk encryption set, but it require in same region. And it cost a lot, take a while to create. is there any way to get the region?…
asked 2024-04-29T07:57:31.0966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 43%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESZ%3C/text%3E%3C/svg%3E)
Siqing Zheng
90
Reputation points
accepted 2024-04-29T19:03:36.5566667+00:00
Siqing Zheng
90
Reputation points
1 answer
One of the answers was accepted by the question author.
cross-tenent application security concern
There is an cross tenant application, which used by customer tenant A and customer tenant B, both A and B grant permission to the Application to their own resources RA, RB. Does It possible tenant A be able access resource RB by the Application? In…
asked 2024-04-26T21:49:12.9533333+00:00
Siqing Zheng
90
Reputation points
commented 2024-04-30T21:41:55.1966667+00:00
Siqing Zheng
90
Reputation points
1 answer
One of the answers was accepted by the question author.
Application running in AKS gets 403 forbidden by rbac when using service principal to fetch secret in keyvault.
The service principal has key vault secrets user in the resource group where the keyvault is. The pod authenticates with az --service-principal -n [app_id] -p [secret] --tenant [tenant id] The service principal have had keyvault admin role, but with…
asked 2024-04-24T14:18:52.9766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 3%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKB%3C/text%3E%3C/svg%3E)
Krister Borge (Innleid)
20
Reputation points
accepted 2024-04-26T11:17:23.5466667+00:00
Krister Borge (Innleid)
20
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure Devops Pipeline failing on azure key vault
We get this error : fail: AzureSignTool.SignCommand[0] Failed to retrieve certificate *** from Azure Key Vault. Please verify the name of the certificate and the permissions to the certificate. Error message: ClientSecretCredential authentication…
asked 2024-04-24T09:08:23.9933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 61%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECC%3C/text%3E%3C/svg%3E)
Cyril Carlier
20
Reputation points
commented 2024-04-29T10:13:23.0666667+00:00
Deepanshu katara
6,245
Reputation points