Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,179 questions
1 answer
One of the answers was accepted by the question author.
Access policies for Keyvaults decommission
Hello, I'm having a question relating Access policies. Is it planned into some Azure plan to decommission Access policies for Keyvaults ? If yes could you tell/give the dead lines and official communication pages ? Thanks, JR
asked 2024-06-05T13:45:15.0833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 62%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJR%3C/text%3E%3C/svg%3E)
Jean Rene BLAIVE
20
Reputation points
accepted 2024-06-06T07:02:53.86+00:00
Jean Rene BLAIVE
20
Reputation points
1 answer
One of the answers was accepted by the question author.
Cost Implications of Azure Key Vault with Diagnostic Settings and High Volume of Secrets
Hi, I have a specific use case for Azure Key Vault and need some clarification on cost implications. Here are the details of my scenario: Diagnostic Settings: I aim to enable diagnostic settings for Azure Key Vault and store the logs in Log Analytics.…
asked 2024-05-29T15:40:03.97+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 63%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
Subhash Kumar Mahato
100
Reputation points
commented 2024-06-06T04:17:32.8933333+00:00
Subhash Kumar Mahato
100
Reputation points
3 answers
Access Policies not available
I've assigned the user- Key vault secrets user role, however I'm unable to see Access Policy. Please see the image for error. Also, I'm unable to switch to vault access policy, it says- there was an error.
asked 2023-06-15T10:28:48.03+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 59%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Aanchal Soni
20
Reputation points
commented 2024-06-05T13:39:58.9666667+00:00
Jean Rene BLAIVE
20
Reputation points
1 answer
Cannot Access Azure Key Vault from Python script via 'os.environ["VAULT_URL]" - Key Error: "VAULT_URL"
I am having trouble accessing my Azure Key vault from my python script (debugging before deployment), the script cannot find the environment variable "VAULT_URL" even though I have set this in my environment variables on my Function App on…
asked 2024-05-09T15:45:41.14+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 53%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Aidan Goldie
0
Reputation points
commented 2024-06-04T20:53:29.82+00:00
James Hamil
22,981
Reputation points Microsoft Employee
2 answers
Azure Keyvault: The operation is not allowed by RBAC.
Hi, I am the owner of the subscription, i have created the azure keyvault and when I am trying to add a new secret, I get the following error message. The operation is not allowed by RBAC. If role assignments were recently changed, please wait…
asked 2023-09-17T04:23:34.2066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 28.000000000000004%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDA%3C/text%3E%3C/svg%3E)
Dat AU DUONG
250
Reputation points
commented 2024-06-04T12:54:06.78+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 19%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESV%3C/text%3E%3C/svg%3E)
Sheldon Vernon
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure Databricks with Key vault backed secret using RBAC
Azure Key vault had launched the RBAC access model in 2021. This allows finer granular access to a particular secret or key or certificate. The previous model was access policies which doesn't allow this granular access. From my knowledge, Azure keyvault…
asked 2023-05-17T14:10:08.1633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 11%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECA%3C/text%3E%3C/svg%3E)
Chand, Anupam SBOBNG-ITA/RX
461
Reputation points
commented 2024-06-03T13:22:57.4466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 93%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENK%3C/text%3E%3C/svg%3E)
Naveen Kumar
1
Reputation point
1 answer
How to connect event grid with self-signed certificates
Hello everyone, I am trying to communicate with a Schneider PLC through Event Grid with an MQTT broker using self-signed certificates from Key Vault. I have uploaded certificates generated by Key Vault in .pem and .cer formats, but I receive an error:…
asked 2024-05-30T23:10:06.52+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 66%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
Marcos Moraga
20
Reputation points
commented 2024-06-03T05:30:28.5633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Givary-MSFT
30,431
Reputation points Microsoft Employee
1 answer
App Service Outbound connectivity not routing through VNET
I have configured keyvault with allow public access from vnet and specific ip address added the subnet delegated to app services created a app service with vnet integration and the outbound traffic to key vault is still going through public and not…
asked 2024-03-09T06:07:11.6033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 5%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Syed Munaz
0
Reputation points
commented 2024-06-02T12:04:08.31+00:00
Syed Munaz
0
Reputation points
2 answers
Insufficient Permissions for Import Certificate into Key Vault
I am an external user for one of my client accounts. I have owner permissions. I am trying to import a certificate into a key vault. The key vault has the Vault Access Policy. As the owner, I have full access to this resource. However, when I try to…
asked 2024-05-30T06:32:40.9466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 57.00000000000001%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECS%3C/text%3E%3C/svg%3E)
Carolyn Schroeder
186
Reputation points
commented 2024-05-30T12:58:06.56+00:00
Deepanshukatara-6769
7,525
Reputation points
2 answers
One of the answers was accepted by the question author.
What are the best Practices for Storing Privileged Credentials in Azure Key Vault
Hi, I would like to leverage Azure Key Vault to store some privileged credentials (such as Linux root accounts or AD privileged accounts) and share them with specific teams. Since there are some naming restrictions in Azure Key Vault and secrets, such as…
asked 2024-05-13T04:00:00.26+00:00
Subhash Kumar Mahato
100
Reputation points
accepted 2024-05-30T04:25:12.6233333+00:00
Subhash Kumar Mahato
100
Reputation points
2 answers
One of the answers was accepted by the question author.
Generate dynamic passwords with Azure Key Vault for Postgresql Database running in Azure VM
Hey guys, I have my open source postgresql deployed in Azure VMs. I would like to generate dynamic passwords for the database users using Azure Key Vault. Is it typically possible? If yes, can you please help down with steps or redirect me to right…
asked 2024-05-25T12:00:03.65+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 49%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
M, Anbazhagan
20
Reputation points
answered 2024-05-25T13:37:36.5233333+00:00
Vinodh247
12,741
Reputation points
1 answer
Getting error while trying to use Python 3.11 in Linux machine.
Getting below error while trying to use Python 3.11 in Linux machine. az keyvault: module 'inspect' has no attribute 'getargspec'
asked 2024-05-16T14:09:20.8633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 83%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERG%3C/text%3E%3C/svg%3E)
Ravikumar Gopalsamy
0
Reputation points
commented 2024-05-25T09:12:40.05+00:00
Manu Philip
17,271
Reputation points MVP
1 answer
Seeking Tools or Scripts for Bulk Operations in Azure Key Vault
Hello, I am looking to utilize Azure Key Vault for storing our organization's secret data. Specifically, I need to perform bulk operations such as creating multiple key vaults, adding multiple secrets, and assigning permissions in an efficient manner. I…
asked 2024-05-23T15:50:52.9633333+00:00
Subhash Kumar Mahato
100
Reputation points
edited an answer 2024-05-25T00:27:54.47+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Marilee Turscak-MSFT
36,161
Reputation points Microsoft Employee
1 answer
Does azure China's encryption algorithm comply with OSCCA certification of China? For example, key vault
Hi Team, May I ask whether the encryption algorithms designed by Azure China service comply with or are certified by OSCCA algorithms in China? Similar to the documentation given by AWS, do we also meet this Chinese algorithm standard for some similar…
asked 2024-05-14T08:25:01.4266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 7.000000000000001%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG2%3C/text%3E%3C/svg%3E)
Gallatin 21V
186
Reputation points
commented 2024-05-24T02:26:33.21+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Akhilesh
7,065
Reputation points Microsoft Vendor
1 answer
One of the answers was accepted by the question author.
How to secure APIM subscription key when calling APIs from Web Client Application
Hello, What are some secure ways to pass the Azure API Management (APIM) subscription key while calling APIs, without exposing it in the browser network tab? Passing the key inside the header is not ideal as it can be exposed in the network tab. Would…
asked 2024-05-21T20:24:47.8033333+00:00
Abhishek Sinha
61
Reputation points
accepted 2024-05-24T02:19:26.5066667+00:00
Abhishek Sinha
61
Reputation points
2 answers
Automating the Client Secrets rotation using KeyVault or any methods before the expiry date?
I need to rotate the Client Secrets in my existing subscriptions before the expiry date. How can I achieve it for multiple subscriptions when using the suggested method ttps://learn.microsoft.com/en-us/azure/key-vault/secrets/tutorial-rotation? Can I…
asked 2024-04-16T03:27:13.7333333+00:00
EnterpriseArchitect
5,096
Reputation points
answered 2024-05-22T16:05:49.1466667+00:00
Pinaki Ghatak
2,875
Reputation points Microsoft Employee
2 answers
how to get key info from other tenant
Hi according to this article:…
asked 2024-05-08T01:55:48.3233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 43%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESZ%3C/text%3E%3C/svg%3E)
Siqing Zheng
110
Reputation points
commented 2024-05-21T09:37:48.4533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 53%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EE9%3C/text%3E%3C/svg%3E)
Ethan-9463
0
Reputation points
2 answers
What permissions are required to allow app services to import a certificate from a keyvault that uses RBAC?
I have an azure app service and key vault that is using RBAC. I am unable to get the app service to import a certificate from key vault. I keep getting this error: Failed to import key vault certificate: ... . Error: The service does not have access…
asked 2024-05-15T01:04:34.1366667+00:00
Barry Bahrami
11
Reputation points
commented 2024-05-21T05:54:54.4266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Sandeep G-MSFT
16,521
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Using key vault to customize the encryption keys at rest for Azure Database PostgreSQL imply any cost on for encrypt/decrypt operations?
Hi, Based on the pricing for Key Vault, encryption/decryption operations via API are charged. My question is, does this also imply cost for PostgreSQL DBaaS using custom encryption keys stored in Azure Key Vault or the cost for encrypting/decrypting…
Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,179 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
1,060 questions
Azure Database for PostgreSQL
Azure Database for PostgreSQL
An Azure managed PostgreSQL database service for app development and deployment.
937 questions
asked 2024-05-20T09:07:22.4+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 72%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJL%3C/text%3E%3C/svg%3E)
José Luis Rando Calvo
20
Reputation points
accepted 2024-05-20T13:54:12.81+00:00
José Luis Rando Calvo
20
Reputation points
1 answer
ManagedIdentityCredential authentication unavailable. Connection to IMDS endpoint cannot be established
We have a locally built a Spring boot sample client application to Access the Azure Key vault services and retrieve the secrets. The Application is built and packaged as WAR file and deployed in the external Tomcat server. We use the User Assigned…
asked 2024-05-20T10:21:28.2933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(76.8, 63%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERB%3C/text%3E%3C/svg%3E)
Rajesh Babu Selvaraj
0
Reputation points
edited the question 2024-05-20T11:35:54.6233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 46%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
ManoharLakkoju
690
Reputation points Microsoft Vendor