Share via

Data Factory Cant Access secrets in Key Vault

Debbie Edwards 521 Reputation points
2022-09-06T14:54:04.227+00:00

I have a data Factory and I want to access secrets in my key vault.
Both are in the same subscription and resource group

In the Key Vault I have Get and List on Secrets for the Data Factory application test-uks-projecta-adf

As a Linked Service, I add in the key vault and it works

But when I try and test (Test Connection to Secret) Operation returned an invalid status code 'NotFound'
Activity ID: 0e6a84b6-ca0e-4902-a51b-fc60d2195d9c.

And Any workflow that uses key vault now errors

I have exactly the same set up in the dev environment and it all works fine.

Test connection to Secret

Operation on target Get Bearer Token failed: Failed to get the secret from key vault, secretName: CarbonAPISubmissionFormClientSecret, secretVersion: , vaultBaseUrl: https://test-uks-carbon-kv.vault.azure.net/ . The error message is: Operation returned an invalid status code 'NotFound'.

I am completely at a loss on this one as the set up is the same as Dev. Is there anything Im missing. Why can't it access the secrets when I have given the data factory Get and List on Secrets in the Key Vault?

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,453 questions
Azure Data Factory
Azure Data Factory
An Azure service for ingesting, preparing, and transforming data at scale.
11,651 questions

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. kilian goëtz 146 Reputation points
    2022-09-06T15:06:06.497+00:00

    Hello,

    To access keyvault you need to create a managed identity and add permission to access keyvault. And add your resource to the managed identity.

    If you need more information I'm listening to you.

  2. PRADEEPCHEEKATLA 90,651 Reputation points Moderator
    2022-09-07T10:46:04.39+00:00

    Hello anonymous user,

    Thanks for the question and using MS Q&A platform.

    You may checkout this article - Use Azure Key Vault secrets in pipeline activities which describes how to add Managed idenity of the Azure Data Factory in Azure Key vault and grant access polices.

    Hope this will help. Please let us know if any further queries.

    • Please don't forget to click on 130616-image.png or upvote 130671-image.png button whenever the information provided helps you. Original posters help the community find answers faster by identifying the correct answer. Here is how
    • Want a reminder to come back and check responses? Here is how to subscribe to a notification
    • If you are interested in joining the VM program and help shape the future of Q&A: Here is jhow you can be part of Q&A Volunteer Moderators
    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.