This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 51%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
Hello Team,
One more Query related to Azure. If we Download the Backup of all the Keys and Trying to import it to another Key valut or tanent then it decrypt all those keys or accept it?
Thank you in advance
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?
If you have any other questions, please let me know. Thank you for your time and patience throughout this issue.
If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 70%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELL%3C/text%3E%3C/svg%3E)
Thank you for your post and I apologize for the delayed response!
When it comes to downloading a backup of your Key Vault objects such as secrets, keys, or certificates, the backup operation will download the objects as an encrypted blob. In order to get usable data from this blob, you must restore the blob into a Key Vault within the same Azure subscription and Azure geography.
If you're trying to import this encrypted blob to another Azure AD tenant's Key Vault - since you'll need to restore the blob into a Key Vault within the same Azure Subscription. You'll also need to move the same subscription used to deploy the original Key Vault to this new tenant. For more info - Design considerations.
Note: Because the Azure Key Vault is automatically tied to the Azure Active Directory tenant ID for the subscription in which it is created. If you move your Azure subscription from tenant A to tenant B, your existing key vaults will be inaccessible by the service principals (users and applications) in tenant B. To fix this issue, you can reference our - Moving an Azure Key Vault to another subscription documentation.I've also reached out to our Key Vault engineering team so they can look into this issue as well and will update as soon as possible.
If you have any other questions, please let me know. Thank you for your time and patience throughout this issue.
Thank you for your time and patience throughout this issue!
I received an update from our engineering team and if you're trying to import this encrypted blob (backup) to another Azure AD tenant's Key Vault - since you'll need to restore the blob into a Key Vault within the same Azure Subscription.
If you have any other questions, or would like to work closer with our support team on this, please let me know.
If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?
If you have any other questions, please let me know. Thank you for your time and patience throughout this issue.
If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.