![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 36%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAE%3C/text%3E%3C/svg%3E)
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,293 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAV%3C/text%3E%3C/svg%3E)
Thank you for reaching Microsoft Q&A forum!
Let me help you with the information about your ask.
Key Vault that is being used by Azure CDN endpoint can't have IP based whitelisting.
Azure CDN and Key Vault are internally integrated, and Key Vault’s IP-based firewall rules do not apply to Azure services like CDN.
We cannot have a private endpoint connection between Azure key Vault and Azure CDN endpoint as they are integrated internally in OOTB way.
Azure Key Vault and Azure CDN are not support private endpoint connections directly between them. This is because they are integrated in a way that allows them to work together out-of-the-box (OOTB) without requiring additional configurations. If you would like to secure the communication between these services, you might consider using Azure Private Link for Key Vault.
Hope this helps. Do let us know if you any further queries by responding in the comments section.
Thanks,
Akhilesh.
If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.