Cmk encryption for Azure Storage account with private endpoint for key vault

MS Techie 2,701 Reputation points
2023-09-28T13:32:52.34+00:00

I have configured cmk encryption for my azure storage account and have that key in azure key vault. My azure storage account has private endpoint and key vault does not have. The cmk encryption setup was pretty simple and happened.Now can I have private end point for key vault also and still connect to azure storage account via the vnet hosting the private endpoints of azure storage and azure key vault ?

Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
3,149 questions
0 comments No comments
{count} votes

Accepted answer
  1. TP 94,226 Reputation points
    2023-10-02T13:12:27.1333333+00:00

    Hi,

    Yes, you can use private endpoint for your key vault. On your key vault you want to enable "Allow trusted Microsoft services to bypass this firewall" under Networking so that your storage account will be able to unwrap key.

    Please click Accept Answer and upvote if the above was useful.

    Thanks.

    -TP


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.