This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 71%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
I have configured cmk encryption for my azure storage account and have that key in azure key vault. My azure storage account has private endpoint and key vault does not have. The cmk encryption setup was pretty simple and happened.Now can I have private end point for key vault also and still connect to azure storage account via the vnet hosting the private endpoints of azure storage and azure key vault ?
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
Answer accepted by question author
Hi,
Yes, you can use private endpoint for your key vault. On your key vault you want to enable "Allow trusted Microsoft services to bypass this firewall" under Networking so that your storage account will be able to unwrap key.
Please click Accept Answer and upvote if the above was useful.
Thanks.
-TP
@MS Techie Any update?