What options are there for HSM on Azure Stack HCI?

Jaime Rodriguez 1

Can i use managed HSM on Azure Stack HCI?
Could it be a third party HSM?

Thanks!

deherman-MSFT 38,021 Reputation points Microsoft Employee Moderator

2023-01-12T19:37:21.7533333+00:00

Jaime Rodriguez

Just following up to see if an answer below helped you, if so, please don’t forget to "Accept the answer" and “up-vote”. Feel free to reply to that answer with any follow-up questions you may have. It is also very helpful if you rate the answer. Have a great day!

3 answers

Martin Dimovski 1,636 Reputation points MVP

2023-01-04T21:10:55.843+00:00

Hi,

Thank you for posting the question to the Q&A forum.

Yes you can use HSM managed on Azure Stack HCI below you can see all of the informations here: https://learn.microsoft.com/en-us/azure/key-vault/managed-hsm/overview

But also you can use 3rd party HSM, so far just 4 options: CloudFlare, PrimeKey, New Net and Hashicorp Vault you can find more here: https://learn.microsoft.com/en-us/azure/key-vault/managed-hsm/third-party-solutions

I hope the above information can help you.

If the ANSWER is helpful, please click "Accept Answer" and upvote it. Thanks
Please sign in to rate this answer.
Jaime Rodriguez 1 Reputation point

2023-01-05T09:25:00.753+00:00

@Martin Dimovski -- I clicked on your links but did not find anything confirming your answer.. have you tried first doing this first-hand? or did i miss something from your links?
Any (other) suggestions on how to validate is appreciated.
Sign in to comment

Use comments to ask for clarification, additional information, or improvements to the question.
Martin Dimovski 1,636 Reputation points MVP

2023-01-05T23:30:03.46+00:00

Sorry for the misunderstanding @Jaime Rodriguez let's do on this way :

Can I use managed HSM on Azure Stack HCI?

Yes, you can use the below is the reference link from MS: https://learn.microsoft.com/en-us/azure/key-vault/managed-hsm/overview

Could it be a third-party HSM?

Yes it can, reference link from MS: https://learn.microsoft.com/en-us/azure/key-vault/managed-hsm/third-party-solutions

I hope the above information can help you if not please let me know.

If the ANSWER is helpful, please click "Accept Answer" and upvote it. Thanks
Please sign in to rate this answer.

0 comments No comments
Sign in to comment

Use comments to ask for clarification, additional information, or improvements to the question.
Martin Gammelgård Rasmussen 0 Reputation points

2023-02-27T08:26:11.7+00:00

The Azure Stack solutions supports Azure Key Vault Standard Tier, which does not support HSM keys.
https://learn.microsoft.com/en-us/azure-stack/user/azure-stack-key-vault-intro?view=azs-2206#key-vault-basics
https://learn.microsoft.com/en-us/azure/security/fundamentals/key-management#azure-key-management-services

You can install extensions in your Azure Stack solutions, that support communication with any Azure Key Vault service hosted in Microsoft Cloud.
Please sign in to rate this answer.

0 comments No comments
Sign in to comment

Use comments to ask for clarification, additional information, or improvements to the question.

Your answer