Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,160 questions
2 answers
One of the answers was accepted by the question author.
Use one user assigned managed-identity for all subscriptions VS. Use one user assinged managed-identity for each subscription
Hi, In CMEK scenario, according to this article:…
asked 2024-06-15T03:02:13.06+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 43%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESZ%3C/text%3E%3C/svg%3E)
Siqing Zheng
90
Reputation points
accepted 2024-06-17T17:29:36.54+00:00
Siqing Zheng
90
Reputation points
2 answers
Azure App Configuration Key Vault Reference (Private Key Vault)
Hi, I am having a Key vault which is not publicly exposed Adding Key vault reference to this Key vault in App Configuration giving error: Tried the managed identity way: App Configuration settings Key vault access policy configuration. Please advise.…
asked 2024-06-11T14:55:29.54+00:00
Atanu Gupta
141
Reputation points
commented 2024-06-17T13:57:33.3033333+00:00
Akshay-MSFT
17,006
Reputation points Microsoft Employee
2 answers
Function app using user assigned managed identity in backend but showing System managed identity in environment variables
The issue is that in function apps we are using Environment variables which sourced from a key vault using a user assigned managed identity. System assigned managed identities have been turned off, however the environment variables still show that the…
asked 2024-06-17T08:15:41.7766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 89%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENK%3C/text%3E%3C/svg%3E)
Narendra Kandula
0
Reputation points
edited an answer 2024-06-17T09:50:22.3566667+00:00
TP
81,571
Reputation points
1 answer
Merge Signed Request in Azure Key Vault with DigiCert Certificate Files
We are attempting to renew a SSL certificate for our website. We utilize Azure Key Vault to store our SSL certificate, and it now needs to be renewed. In Key Vault, a new version of our certificate was created where the content type should be PKCS#12.…
asked 2023-07-19T15:55:54.47+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 52%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJB%3C/text%3E%3C/svg%3E)
John Bryant
0
Reputation points
commented 2024-06-17T09:28:53.5433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 63%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEL%3C/text%3E%3C/svg%3E)
Esteban Luchsinger
0
Reputation points
0 answers
I was hacked by hacker
I check my authenticator history and a lot of request was try to access. Can we had my location to add one more layer of security to use authenticator sign in. If they try 1 time per hour I will really lost my connection one day. Maybe today or…
asked 2024-06-02T13:36:48.01+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 5%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDD%3C/text%3E%3C/svg%3E)
Denis Demers
0
Reputation points
commented 2024-06-13T10:46:23.7033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 60%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
juicyyyyy
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Access to Azure Keyvault inside Azure Container Instance WebApi
I would like to retrive the keyvault secrets using managed identity in web Api. Creates Web APi with DefaultAzureCredential Able to retrive the data using aboe code. Built image and pushed into Azure container registry Created azure container…
asked 2024-06-03T18:27:48.5266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 84%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBK%3C/text%3E%3C/svg%3E)
Balanjaneyulu Kantu (Quadrant Technologies)
20
Reputation points
accepted 2024-06-12T03:59:16.5166667+00:00
Balanjaneyulu Kantu (Quadrant Technologies)
20
Reputation points
1 answer
"Failed to create the secret" error in Azure Front Door
Hello, currently I'm trying to assign my storage account's static website an Azure Front Door instance with a custom URL. This way, when someone accesses the custom domain associated with the front door instance, they'll access my static website. I've…
asked 2024-06-05T12:41:08.1033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous
commented 2024-06-11T09:32:43.9166667+00:00
GitaraniSharma-MSFT
48,516
Reputation points Microsoft Employee
0 answers
Assigne user assigned managed identity to Container Instance
Hi Team, I am trying to access azure keyvault inside my container instance app. However, I am not getting the proper response. Creates Web APi with DefaultAzureCredential Able to retrive the data using aboe code. Built image and pushed into Azure…
asked 2024-06-06T21:06:25.8066667+00:00
Balanjaneyulu Kantu (Quadrant Technologies)
20
Reputation points
commented 2024-06-10T06:23:13.4933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Navya
5,405
Reputation points Microsoft Vendor
2 answers
The operation is not allowed by RBAC. If role assignments were recently changed, please wait several minutes for role assignments to become effective.
I am the owner but got "The operation is not allowed by RBAC. If role assignments were recently changed, please wait several minutes for role assignments to become effective. " when trying to create a certificate
asked 2024-06-08T23:33:02.3266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 47%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAW%3C/text%3E%3C/svg%3E)
Alan W Zhang
0
Reputation points
commented 2024-06-10T03:31:52.2833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Givary-MSFT
29,351
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Is there a simple example of how to connect my MVC Web App to Azure KeyVault and extract my connect string?
I am using DotNet Core 8.0 and trying to use KeyVault from a non-Azure hosted WebApp. I am trying to use secrets for my database connect strings. Is there a simple example of how to connect my MVC Web App to Azure KeyVault and extract my connect…
asked 2024-06-03T18:52:20.49+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 57.00000000000001%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETP%3C/text%3E%3C/svg%3E)
Tim Philomeno
20
Reputation points
accepted 2024-06-07T18:57:48.9466667+00:00
Tim Philomeno
20
Reputation points
2 answers
Cannot process as Key Vault support is not present in the current application
I recently added encryption to my database using Always Encrypted feature and storing Master Key into Azure Key Vault. Everything works fine locally but I can't publish on Azure SQL Database using my SSDT project because I have the error : "Cannot…
asked 2020-07-02T13:31:15.017+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 97%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL0%3C/text%3E%3C/svg%3E)
Lekster 001
6
Reputation points
commented 2024-06-07T14:17:01.4966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 41%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELS%3C/text%3E%3C/svg%3E)
Leon Sebastian
0
Reputation points
2 answers
How to set expiry date for all the azure key vault secrets ?
Hi Team, I want to set expiry for all the secrets under one azure key vault. After searching many articles I found this : "az keyvault secret set-attributes --vault-name 'your-keyvault-name' --name 'your-secret-name' --expires…
asked 2024-05-31T12:48:31.83+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 27%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDV%3C/text%3E%3C/svg%3E)
Deshmukh, Vijit
496
Reputation points
commented 2024-06-07T07:47:27.48+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 13%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBB%3C/text%3E%3C/svg%3E)
Babafemi Bulugbe
2,680
Reputation points MVP
2 answers
One of the answers was accepted by the question author.
Effect of MC792991 Disablement of Symmetric keys for Microsoft Entra first-party applications Service Principals
Hello Team, Greetings! This is Joni. Due to the Microsoft post as follows, a partner need to address how this affects to end users' resources and workloads. Disablement of Symmetric keys for Microsoft Entra first-party applications Service Principals…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 62%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EY%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 60%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Accessing Azure Key Vault by using x509 certificate authentication
Hi there, may i know if there is a way to use x509 certificate as authentication to access Azure Key Vault ?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 72%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFL%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Access policies for Keyvaults decommission
Hello, I'm having a question relating Access policies. Is it planned into some Azure plan to decommission Access policies for Keyvaults ? If yes could you tell/give the dead lines and official communication pages ? Thanks, JR
asked 2024-06-05T13:45:15.0833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 62%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJR%3C/text%3E%3C/svg%3E)
Jean Rene BLAIVE
20
Reputation points
accepted 2024-06-06T07:02:53.86+00:00
Jean Rene BLAIVE
20
Reputation points
1 answer
One of the answers was accepted by the question author.
Cost Implications of Azure Key Vault with Diagnostic Settings and High Volume of Secrets
Hi, I have a specific use case for Azure Key Vault and need some clarification on cost implications. Here are the details of my scenario: Diagnostic Settings: I aim to enable diagnostic settings for Azure Key Vault and store the logs in Log Analytics.…
asked 2024-05-29T15:40:03.97+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 63%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
Subhash Kumar Mahato
100
Reputation points
commented 2024-06-06T04:17:32.8933333+00:00
Subhash Kumar Mahato
100
Reputation points
3 answers
Access Policies not available
I've assigned the user- Key vault secrets user role, however I'm unable to see Access Policy. Please see the image for error. Also, I'm unable to switch to vault access policy, it says- there was an error.
asked 2023-06-15T10:28:48.03+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 59%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Aanchal Soni
20
Reputation points
commented 2024-06-05T13:39:58.9666667+00:00
Jean Rene BLAIVE
20
Reputation points
1 answer
Cannot Access Azure Key Vault from Python script via 'os.environ["VAULT_URL]" - Key Error: "VAULT_URL"
I am having trouble accessing my Azure Key vault from my python script (debugging before deployment), the script cannot find the environment variable "VAULT_URL" even though I have set this in my environment variables on my Function App on…
asked 2024-05-09T15:45:41.14+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 53%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Aidan Goldie
0
Reputation points
commented 2024-06-04T20:53:29.82+00:00
James Hamil
22,886
Reputation points Microsoft Employee
2 answers
Azure Keyvault: The operation is not allowed by RBAC.
Hi, I am the owner of the subscription, i have created the azure keyvault and when I am trying to add a new secret, I get the following error message. The operation is not allowed by RBAC. If role assignments were recently changed, please wait…
asked 2023-09-17T04:23:34.2066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 28.000000000000004%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDA%3C/text%3E%3C/svg%3E)
Dat AU DUONG
235
Reputation points
commented 2024-06-04T12:54:06.78+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 19%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESV%3C/text%3E%3C/svg%3E)
Sheldon Vernon
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure Databricks with Key vault backed secret using RBAC
Azure Key vault had launched the RBAC access model in 2021. This allows finer granular access to a particular secret or key or certificate. The previous model was access policies which doesn't allow this granular access. From my knowledge, Azure keyvault…
asked 2023-05-17T14:10:08.1633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 11%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECA%3C/text%3E%3C/svg%3E)
Chand, Anupam SBOBNG-ITA/RX
461
Reputation points
commented 2024-06-03T13:22:57.4466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 93%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENK%3C/text%3E%3C/svg%3E)
Naveen Kumar
1
Reputation point