![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 26%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGD%3C/text%3E%3C/svg%3E)
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,455 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 28.999999999999996%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDM%3C/text%3E%3C/svg%3E)
Thank you for posting your query on Microsoft Q&A.
The Key Vault Contributor role is designed for admins who will manage Key Vaults in the Azure Portal. But it is not intended for use by Applications which will access keys / secrets. This is what is being referred to as "Management pane operations"
To access the keys / secrets you would need a role which has Data Pane operations.
If you compare the roles you will see there are both "Actions" and "Data Actions", where the "Key Vault Contributor" has no data actions - https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#key-vault-contributor
But if we look at a role such as "Key Vault Crypto Officer" it has "Data Actions" - https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#key-vault-crypto-officer
Let me know if you have any further queries, I would be happy to help.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.