Azure web app (private endpoint) can't reference keyvault (private endpoint) secret

Faisal A 6 Reputation points
2021-10-20T21:47:20.533+00:00

Both my web app and key vault are on the same vnet, and the same subnet, both are using private endpoints, however, when I try to reference a secret from the key vault it doesn't work. Looking at the key vault logs, it shows client address is not authorised and the caller is not a trusted service. I have vnet integration enabled on the web app, yet it seems to use its public IP to communicate with the key vault. disabling firewall works, but I need both services to communicate using their private endpoint IP's.

Thanks

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,113 questions
Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
6,864 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Cristian SPIRIDON 4,471 Reputation points
    2021-10-21T15:14:19.143+00:00

    Hi @Faisal A ,

    For key vault with private endpoint to setup, looks like there are few steps that need to be done.

    Have you follow the instructions from below answer and still not working?
    https://stackoverflow.com/questions/67589490/azure-key-vault-not-allow-access-via-private-endpoint-connection

    Hope this helps!