![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 9%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESA%3C/text%3E%3C/svg%3E)
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,413 questions
Thank you for posting your query on Microsoft Q&A, from above description I could understand that you want to give your Entra ID (Azure AD) registered application access to Azure Key Vault via RBAC role.
Please do correct me if this is not the case by responding in the comments section.
Kindly follow the given steps:
- Copy Registered application name from the registered application overview.
- Navigate to KeyVaults > Access control (IAM) > Add > Add Role Assignment > Select "Key Vault Reader" > Look for Application with display name under "Select members" and application would be available for service principal.
- Once visible click on the app name for selection > Review+Assign.
- To validate, click on "check access" on the Key Vault.
- Search for application with display name and select it to see the assigned role.
Thanks,
Akshay Kaushik
Please "Accept the answer" (Yes), and share your feedback if the suggestion answers you’re your query. This will help us and others in the community as well.