Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
0 answers
The connection to data plane failed on 6 vaults today. All worked yesterday!
I am having Data Plane issues with all my key vaults today. Has Microsoft made a change that broke access to the Data Plane?
Azure Key Vault
asked 2026-04-22T03:24:08.29+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 48%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Brett Styles (AD)
25
Reputation points
commented 2026-04-24T15:42:27.8766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 85%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
VEMULA SRISAI
11,810
Reputation points Microsoft External Staff
Moderator
1 answer
One of the answers was accepted by the question author.
hsmPlatform 1 keys retirement with existing key vault
Hello, we current have an Azure 'key vault' containing a code sign certificate, I have checked the 'hsmPlatform' on the certificate and it is version 1. The code sign certificate expires in 2027 and the 'hsmPlatform 1' retires in 2028. So my question…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-04-24T14:58:40.5033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 66%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGC%3C/text%3E%3C/svg%3E)
Gary Cuthbert
20
Reputation points
accepted 2026-04-24T15:00:16.6733333+00:00
Gary Cuthbert
20
Reputation points
0 answers
Getting error running container on local machine
Unhandled exception. System.AggregateException: Retry failed after 4 tries. Retry settings can be adjusted in ClientOptions.Retry or by configuring a custom retry policy in ClientOptions.RetryPolicy. (The SSL connection could not be established, see…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-04-23T05:23:52.3333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 74%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERS%3C/text%3E%3C/svg%3E)
Rajat Singhal
25
Reputation points
commented 2026-04-24T14:35:54.7966667+00:00
VEMULA SRISAI
11,810
Reputation points Microsoft External Staff
Moderator
1 answer
Purge an Incorrect key vault
We currently have a keyvault stuck in a soft deleted state that needs to be purged. Could you please purge the keyvault?. This resource was created for a test deployment and was deployed incorrectly. There are no values in it needed. Our team needs to…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-04-22T01:03:21.0066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 22%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKC%3C/text%3E%3C/svg%3E)
Kaughlin Caver
0
Reputation points Microsoft Employee
edited the question 2026-04-22T03:19:35.6266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 99%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
Rukmini
37,695
Reputation points Microsoft External Staff
Moderator
1 answer
How to sign a .rdp file, when the certificate in in azure key vault HSM, and after sign how to verify that it signed
I have tried rdpsign command to sign .rdp file, but for thumbprint we need certificate in machine but in my case certificates are in azure key vault HSM. Is there a way to sign a .rdp file, when the certificate in in azure key vault HSM. I have tried,…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2025-06-17T03:59:43.2466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 61%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPC%3C/text%3E%3C/svg%3E)
prashant chakurkar
0
Reputation points
commented 2026-04-21T05:02:44.51+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(38.4, 79%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Michael Tantos
0
Reputation points
3 answers
One of the answers was accepted by the question author.
I am trying to add an App Service Certificate to a Key Vault
I am trying to add an App Service Certificate that I created to a Key Vault that I created by keep getting this error How can I give myself permission to do this, I am the Owner of the subscription.
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2025-12-18T13:15:46.3733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 93%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESR%3C/text%3E%3C/svg%3E)
Simon Radford
20
Reputation points
answered 2026-04-19T13:02:21.4866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 10%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESF%3C/text%3E%3C/svg%3E)
Stefan Fey
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Clarification on Azure Container Apps and Key Vault transactions
I’m working with Azure Container Apps and Azure Key Vault, and I’m trying to better understand how Key Vault transactions are counted and billed. I know that Key Vault charges per 10,000 transactions, but I’m unclear on what exactly counts as a…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 82%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Get Random Bytes API
Hi Community, Wanted to check if the Get Random Bytes API [https://learn.microsoft.com/en-us/rest/api/keyvault/keys/get-random-bytes/get-random-bytes?view=rest-keyvault-keys-2025-07-01&tabs=HTTP] is supported only with the "Azure Managed…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-04-14T18:18:38.74+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 95%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Battina, Subodh
70
Reputation points
accepted 2026-04-16T22:09:12.23+00:00
Battina, Subodh
70
Reputation points
1 answer
One of the answers was accepted by the question author.
Roles Managed HSM Crypto Officer and Managed HSM Crypto User
Hi Community, Needed some clarification, thank you !! Wanted to check, can the role "Managed HSM Crypto Officer" perform all crypto operations like encrypt, decrypt, or is it only meant to create, update, deleted keys in the HCM pool? Do we…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-04-14T18:13:31.6466667+00:00
Battina, Subodh
70
Reputation points
accepted 2026-04-15T23:47:36.04+00:00
Battina, Subodh
70
Reputation points
1 answer
One of the answers was accepted by the question author.
Can we use Get Random Bytes API with Azure Key Vault Premium Subscription
Can we use Get Random Bytes API with Azure Key Vault Premium Subscription? This link [https://learn.microsoft.com/en-us/rest/api/keyvault/keys/get-random-bytes/get-random-bytes?view=rest-keyvault-keys-2025-07-01&tabs=HTTP] says it "Get the…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-04-09T14:03:56.44+00:00
Battina, Subodh
70
Reputation points
accepted 2026-04-13T17:34:01.6566667+00:00
Battina, Subodh
70
Reputation points
3 answers
Can I restore Keys (and other secrets) from a Key vault into another Subscription?
Azure doc specifies that Keys and other secrets from a Key Vault backup must be restored into an Azure Key Vault of the same Subscription it originates (or so I understand). When you back up a key vault object, such as a secret, key, or certificate,…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2024-07-09T12:37:35.8933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 93%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPB%3C/text%3E%3C/svg%3E)
Pierre Beucher
0
Reputation points
answered 2026-04-12T14:41:12.57+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 34%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
Mohamed Marzouki
0
Reputation points
1 answer
Certificate imported properly into keyvault, but cloud service extended deployment fails
We are trying to import a pfx formated (that includes the intermediate cert) certificate into keyvault so that it can be used for TLS 1.3. We were able to import it properly. But when deploying the cloudservice extended package, it fails to recognize the…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-04-09T17:19:18.0666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 76%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECS%3C/text%3E%3C/svg%3E)
Cloud Service3
5
Reputation points
answered 2026-04-10T07:51:57.6333333+00:00
Alex Burlachenko
20,505
Reputation points MVP
Volunteer Moderator
1 answer
One of the answers was accepted by the question author.
Cannot set up Azure Key Vault extension on Ubuntu VM
I am attempting to set up the Azure Key Vault extension on an Azure VM running Ubuntu, so that nginx on that VM can access an SSL certificate with HSM-secured key to secure a website hosted on the VM. However, when running the command below, I get an…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-04-07T11:06:26.3066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 35%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDK%3C/text%3E%3C/svg%3E)
David Kelly
20
Reputation points
accepted 2026-04-09T14:50:22.0566667+00:00
David Kelly
20
Reputation points
1 answer
Azure AD B2C Issuing JWT Tokens with Invalid Signatures
Azure AD B2C is intermittently issuing JWT access tokens with mathematically invalid RSA signatures. These tokens fail RSA.VerifyData() validation against the public keys published in the JWKS endpoint, even though: 1. The token's `kid` (Key ID) matches…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-04-09T12:11:25.43+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 99%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
petehall
20
Reputation points
answered 2026-04-09T14:25:16.8633333+00:00
VEMULA SRISAI
11,810
Reputation points Microsoft External Staff
Moderator
3 answers
How to create Key Vault secret when user id is administrator in Microsoft Entra?
I am trying to learn to use Azure Key Vault for a webpage. I created a subscription in Azure under my username and a Resource group to hold the Key Vault. The user id has a role of administrator in Microsoft Entra. Access control (IAM) in the Azure…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-03-31T16:01:14.5033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 99%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDF%3C/text%3E%3C/svg%3E)
Dean Finnestad
0
Reputation points
answered 2026-04-07T04:56:55.3133333+00:00
Raja Pothuraju
47,240
Reputation points Microsoft External Staff
Moderator
1 answer
Receiving RBAC related errors when creating key vault secrets through terraform
As of yesterday, we started experiencing issues creating key vault secrets using terraform. The account we are using has all the required permissions to be able to create key vault secrets. We are experiencing the same when terraform tries to read the…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-04-01T19:37:38.6133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 27%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGH%3C/text%3E%3C/svg%3E)
Garrick Hensberg
5
Reputation points
answered 2026-04-06T22:07:49.1933333+00:00
Garrick Hensberg
5
Reputation points
1 answer
Let's Encrypt Certificate with Key Vault and Azure App Service Import Issues
Hi comunity, I have a wildcard certificate issued by Let's Encrypt. I want to use this certificate with an Azure App Service. Following the instructions, I created a password-protected .pfx file using the following command: openssl pkcs12 \ -export \ …
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
9,845 questions
asked 2024-09-29T21:47:48.62+00:00
Lucian Hanga
25
Reputation points
commented 2026-03-31T17:50:40.05+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 4%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Sina Salam
28,361
Reputation points
Volunteer Moderator
1 answer
One of the answers was accepted by the question author.
Azure Key Vault SecretGet returning HTTP 500 since March 25, 2026 4:00 PM PT – Resource Health reporting Vault Degraded (Unplanned)
Beginning March 25, 2026 at approximately 4:00 PM PT, our application has been unable to retrieve secrets from Azure Key Vault during standard initialization workflows. SecretGet operations against the following Key Vault are returning HTTP 500 Internal…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-03-26T19:34:01.38+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 79%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGH%3C/text%3E%3C/svg%3E)
Geoff Hinton
20
Reputation points Microsoft Employee
accepted 2026-03-26T23:40:12.4133333+00:00
Geoff Hinton
20
Reputation points Microsoft Employee
0 answers
Join: Microsoft Azure Q&A Champions Program
The Microsoft Azure Q&A Champions Program recognizes and empowers a global community of internal and external Azure experts who help customers succeed by providing high-quality, trusted answers on Microsoft Q&A. The program scales expert led…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-03-25T22:55:00.4066667+00:00
Ashley Swearingen
0
Reputation points Microsoft External Staff
Moderator
answered 2026-03-25T22:55:11.1533333+00:00
Q&A Assist
1 answer
Azure Key Vault Portal truncates secret values containing "://" (e.g. MongoDB connection strings)
Environment: Azure Portal, Azure Key Vault Description: When storing a secret in Azure Key Vault that contains :// in the value (e.g. a MongoDB connection string like mongodb+srv://user:******@cluster.mongodb.net/...), the Azure Portal UI truncates the…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,557 questions
asked 2026-03-16T14:34:59.3666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 43%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENT%3C/text%3E%3C/svg%3E)
Niclas - TheTyp
0
Reputation points
commented 2026-03-20T14:45:07.3633333+00:00
Niclas - TheTyp
0
Reputation points