Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,112 questions
How can I add new secrets to Azure keyvault which has private endpoint enabled
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 34%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
curious7
151
Reputation points
I have a keyvault which has private endpoint enabled.
I have allowed our WAN IP on the keyvault firewall but when I browse to the "Secrets" tab then I get the following error:-
" The connection to data plane failed. Please refresh and try again. If Private Links are enabled on the vault and the issue persists please follow the steps in the following link https://go.microsoft.com/fwlink/?linkid=2156688 . "
Also, I have VMs on the same subnet as the keyvault endpoint address. But the internet access is only allowed through proxy on those VMs. The subnets for these VMs are allowed on the keyvault firewall.
If try to access the keyvault from Azure console from these VMs through proxy I get following error:-
"Refresh the browser to try again.
Microsoft_Azure_KeyVault extension failed to load.
Please visit Portal Self Help to perform diagnostics."
There is a DNS problem I have noticed with our Azure hosted DNS zone. "keyvaultname.vaultcore.azure.net" does not alias to "keyvaultname.privatelink.vaultcore.azure.net" on these Azure VMs or on on-prem network. So for now I added a host file entry to resolve "keyvaultname.vaultcore.azure.net" to the private endpoint IP address.
But still the keyvault console access gives the above error on these Azure VMs.
How can I access existing secrets and add new ones to this vault using console (or powershell from the Azure VMs will be the only option to access these)?
{count} votes
-
Siva-kumar-selvaraj 15,546 Reputation points2022-05-31T14:09:52.54+00:00 Thanks for reaching out and apologies for the delayed response.
I am looking into this thread, will update you with my findings. Thanks.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 21%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFI%3C/text%3E%3C/svg%3E)
Fahim Ijaz Ahmed 11 Reputation points2023-03-28T00:41:58.24+00:00 Hi @Siva-kumar-selvaraj any update on this? I am also facing the same issue.
Thanks! -
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 47%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENK%3C/text%3E%3C/svg%3E)
Neelakandan, Karthik (Cognizant) 10 Reputation points2023-07-06T11:02:42.1566667+00:00 Hi Siva, Could you please share your finding on this thread. I'm also facing the same issue
Sign in to comment