Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,310 questions
How to set up a MTLS connection from azure devops pipeline to target external api without exporting private key
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 77%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHC%3C/text%3E%3C/svg%3E)
Harmesh Choubisa
0
Reputation points
Our client application is azure devops pipeline and we would like to connect to target api that requires MTLS authentication.
Hence we are required to store private key and certificates.
We identified one security threat that in order to establish an MTLS connection private key always need to be set as exportable else MTLS connection cannot be established.
Expected is something like inbuilt signing methods from azure key vault that do not requires private key to be exported.
Sign in to answer