Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,359 questions
0 answers
How to move an Azure subscription containing a Cosmos DB using customer-managed encryption keys?
I'm preparing to transfer an Azure subscription from one directory to another. This subscription contains a productive application which includes, among other resources, a Cosmos DB instance and a Key Vault. The Cosmos DB has at-rest encryption using…
asked 2025-01-24T10:50:35.0566667+00:00
Daniel Saner
0
Reputation points
edited a comment 2025-01-25T00:29:25.83+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 60%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
Mahesh Kurva
2,095
Reputation points Microsoft Vendor
0 answers
Using a private RSA key stored in key vault to ssh within python code
I am confused about how to use my keys stored in key vault. My scenario: I have an Azure function, which needs to ssh into a virtual machine I use Python's paramiko library to manage ssh access to this VM Basically, I need to mimic the operation in…
asked 2025-01-24T17:16:40.5533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 70%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZ%3C/text%3E%3C/svg%3E)
ZZ
20
Reputation points
edited a comment 2025-01-24T23:33:41.5933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 30%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGP%3C/text%3E%3C/svg%3E)
Goutam Pratti
1,395
Reputation points Microsoft Vendor
1 answer
I changed my email and now I can't see my Key Vault
I have a VM in Azure running some web services. I use Azure Key Vault to generate an SSL certificate for secure comms. I had to change my email on my Azure account. My account was transferred by MS support, but the Key Vault says my Tenant ID has changed…
asked 2025-01-20T04:40:36.78+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 43%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKC%3C/text%3E%3C/svg%3E)
Krisse Casimiro
0
Reputation points
commented 2025-01-24T22:23:05.4866667+00:00
Goutam Pratti
1,395
Reputation points Microsoft Vendor
2 answers
How to add my Trusted Signature to my Azure Key Vault?
Hi, I created a trusted signature in my Azure account. I would like to use it to sign excel files. I understand that I need to export it as PFX. I believe I need Azure key vault to do so, correct? If I get Key vault, how do I transfer / add my trusted…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 91%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 52%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Key Vaults Secrets and RSA Keys
Hi, I am trying to store a RSA key in the ADF Key Vaults so it can be use with a Linked Service. However whenever I try to test SFTP connection it comes back with this error: …
asked 2021-12-17T13:39:47.147+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 80%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGL%3C/text%3E%3C/svg%3E)
Gary Longford
21
Reputation points
commented 2025-01-24T16:12:05.22+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 30%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELO%3C/text%3E%3C/svg%3E)
Luiza Oancea
1
Reputation point
1 answer
One of the answers was accepted by the question author.
Which IPs need to be allowed in event hub and key vault firewalls for it to work with change notifications
I am trying to setup change notifications for my application using Microsoft Graph and Event Hubs as described here. I set up Azure Event Hubs authentication using shared access signatures (SAS) through the Azure portal. However I am having challenges…
asked 2025-01-22T19:32:28.1833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 72%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFA%3C/text%3E%3C/svg%3E)
Favour Adesiyan
20
Reputation points
accepted 2025-01-24T07:01:58.7066667+00:00
Favour Adesiyan
20
Reputation points
1 answer
Entra Key Vault Key Rotation Policy to Rotating the Storage Account Key
I created a Key Vault and granted my storage account the Key Vault Officer role. I then setup a rotation policy as outline in the article below. I see versions of keys listed in Key Vault but the last rotation time stamp on the storage account key is…
asked 2025-01-09T15:49:10.8666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 46%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER4%3C/text%3E%3C/svg%3E)
rr-4098
1,806
Reputation points
commented 2025-01-23T21:09:56.6566667+00:00
James Hamil
26,961
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
How to let synapse pipeline identify a value as hexadecimal encoded text
Hello, I want to sign a JWT token using the signing functionality of Azure Key Vault and have generated a private key. I want to send a request to the Key Vault from Azure Synapse pipeline's Web component. The configuration of this web component is as…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 7.000000000000001%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
5 answers
One of the answers was accepted by the question author.
Configure Azure Key Vault & Create Credential in Power Automate
Hi Team, I have configured the Azure Key Vault in the Azure Portal. But when I am trying to create credentials in Power Automate, I am getting this error message "Could not verify your user permissions on the Azure key vault". Could you please…
asked 2024-10-21T16:57:54.02+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 93%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
Vaibhav Sharma73
35
Reputation points
commented 2025-01-23T04:16:29.1466667+00:00
Vaibhav Sharma73
35
Reputation points
2 answers
How to fix error: SSL_ERROR_UNRECOGNIZED_NAME_ALERT while browsing a web app
Hello there, I get SSL_ERROR_UNRECOGNIZED_NAME_ALERT error when I browse a web app although it's cert and secret are valid. When the certificate and passphrase are directly uploaded to application gateway listener the web app redirects properly and it…
asked 2023-03-31T21:57:42.3533333+00:00
pgaddam
151
Reputation points
commented 2025-01-22T03:17:52.56+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 53%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPK%3C/text%3E%3C/svg%3E)
Patel, Kaushik (KP)
0
Reputation points
2 answers
Unable to disable publicNetworkAccess through ARM template
Hello, I have created a keyvault using arm template and when I add in the properties section: "properties": { "sku": { "family": "A", …
asked 2022-12-23T17:51:04.81+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 52%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
Llazar
6
Reputation points
commented 2025-01-22T01:46:59.7933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 32%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
Justin Mcmullen
0
Reputation points
0 answers
Unable connect Azure KeyVault from App Service using Azure client credentails
Hi Team, I have interesting issue that we are facing in our Production environment. We have AppService that hosts the APi, it connects the KeyVault using Service Principle. In Non-prod it was able to access the KeyVault using ServicePrinciple client…
asked 2025-01-13T05:38:12.8366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 44%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESB%3C/text%3E%3C/svg%3E)
Sumanth Budamagunta
0
Reputation points
commented 2025-01-21T18:30:49.8133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAV%3C/text%3E%3C/svg%3E)
Akhilesh Vallamkonda
11,355
Reputation points Microsoft Vendor
1 answer
Troubleshooting "The specified X.509 certificate content is invalid" Error When Importing to Azure Key Vault
I encountered the error "The specified X.509 certificate content is invalid. Error: One or more X.509 properties are invalid." while attempting to import a certificate from Cybersource into Azure Key Vault. The command used was: az keyvault…
asked 2024-10-17T04:17:38.08+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 62%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHS%3C/text%3E%3C/svg%3E)
Harmanjeet Singh Deol
5
Reputation points
commented 2025-01-21T18:09:50.17+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 49%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKC%3C/text%3E%3C/svg%3E)
Kurpgeweit, Chris - 1468
0
Reputation points
0 answers
Azure Key Vault Managed HSM - Security Domain Certificate Renewal
As documented by Azure, when activating an Azure Key Vault Managed HSM resource you must create a security domain by sending at least three RSA public keys to the HSM. My question is do the certificates/keys need to be updated prior to their set…
asked 2025-01-03T18:59:56.7666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 55.00000000000001%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
Jonathan Maas
20
Reputation points
commented 2025-01-20T16:56:45.51+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Navya
14,730
Reputation points Microsoft Vendor
1 answer
How to get Azure key/key vault region?
In cross tenant scenario, like this, how to check the key region with only key/key vault url? I want to use it in create disk encryption set, but it require in same region. And it cost a lot, take a while to create. is there any way to get the region?…
asked 2024-04-29T07:57:31.0966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 43%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESZ%3C/text%3E%3C/svg%3E)
Siqing Zheng
110
Reputation points
commented 2025-01-17T20:26:36.1566667+00:00
Siqing Zheng
110
Reputation points
1 answer
New EV code signing certificate stored in Azure Key Vault triggers windows smart screen warning on signed executables
We have used a GlobalSign issued EV code signing certificate since 2021 and it is due to expire at the end of August 2024. We use this certificate to sign our installer executables as part of our build system, the signing process uses the azuresigntool…
asked 2024-07-31T11:25:06.3966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 92%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGC%3C/text%3E%3C/svg%3E)
Gary Cuthbert
0
Reputation points
answered 2025-01-17T18:44:05.6866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 76%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ5%3C/text%3E%3C/svg%3E)
JLS-5820
0
Reputation points
2 answers
System-assigned Managed Identities fails to remove a KeyVault Access policies on a user
Hi everyone, please help me with a problem that is driving me crazy and I've been chasing it for 2 days without understanding where the problem lies, so I configured a : KeyVault in which I saved a test secret. I created a runbook inside a test…
asked 2025-01-04T15:23:09.6433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 26%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERA%3C/text%3E%3C/svg%3E)
Red Admin
0
Reputation points
commented 2025-01-17T04:08:11.54+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 27%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERP%3C/text%3E%3C/svg%3E)
Raja Pothuraju
11,515
Reputation points Microsoft Vendor
1 answer
One of the answers was accepted by the question author.
Azure Key Vault Certificate
I'm currently trying to build a workflow that work run this command automatically. Is there a way I can run this command without needing "az login"? az keyvault certificate import --vault-name "<your-key-vault-name>" -n…
asked 2025-01-14T20:50:10.8666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 85%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHK%3C/text%3E%3C/svg%3E)
Ho, Keith D
160
Reputation points
accepted 2025-01-15T22:36:20.84+00:00
Ho, Keith D
160
Reputation points
2 answers
Application settings in Azure Fucntion: AccessToKeyVaultDenied
Hello, To get the connection string of a Azure Storage in Azure Function, we are using the Applicationg Settings in the configuration menu. The problem is that we are receiving the following error: AccessToKeyVaultDenied --> Key Vault reference was…
asked 2023-01-30T11:21:48.4+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous
commented 2025-01-15T14:57:00.73+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 98%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKE%3C/text%3E%3C/svg%3E)
Koteswarao Eleswaram
0
Reputation points
1 answer
Secret loading fails in Azure Data Factory Linked Services when I try to use Azure Key vault.
I am trying to allow ADF linked services to use the key vault but I am receiving the error below. I have set the ADF linked service as per below. You can also see I have tried many RBAC roles to try and get it to work.
asked 2025-01-14T10:30:31.0766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 28.000000000000004%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMB%3C/text%3E%3C/svg%3E)
Michael Berry
0
Reputation points
answered 2025-01-15T01:57:45.83+00:00
Raja Pothuraju
11,515
Reputation points Microsoft Vendor