Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,394 questions
1 answer
Service with Owner level access unable to bind certificate in Keyvault
I am trying to bind a certificate to an app service, but am receiving the following error Failed to import Key Vault Certificate for testing-admin.airportcharges.com due to error: The service does not have access to…
asked 2025-03-12T10:35:13.9966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 96%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMW%3C/text%3E%3C/svg%3E)
Mark Windle
0
Reputation points
edited a comment 2025-03-12T13:32:14.0433333+00:00
TP
109.1K
Reputation points
2 answers
Help with PowerShell Custom Script Extension referencing Key Vault secrets for domain join and Power Automate machine group
Hi everyone, I’m trying to automate both domain joining and Power Automate registration on my Azure VM Scale Set using a PowerShell script via the Custom Script Extension. Specifically, the script needs to: Join the VM to our Windows domain (using a…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 77%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
1 answer
How can I delete a key vault that is not being used?
I accidentally created a key vault, and I now want to delete it since it is not being used. I assigned the Key Vault Administrator to myself so am able to view the contents. There are no secrets, certificates, etc. When I attempt to delete it, I receive…
asked 2025-03-07T22:21:42.94+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 53%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEC%3C/text%3E%3C/svg%3E)
Elizabeth Campbell
0
Reputation points
commented 2025-03-11T21:55:24.8633333+00:00
Elizabeth Campbell
0
Reputation points
2 answers
ManagedIdentityCredential authentication unavailable. Connection to IMDS endpoint cannot be established
We have a locally built a Spring boot sample client application to Access the Azure Key vault services and retrieve the secrets. The Application is built and packaged as WAR file and deployed in the external Tomcat server. We use the User Assigned…
asked 2024-05-20T10:21:28.2933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(76.8, 63%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERB%3C/text%3E%3C/svg%3E)
Rajesh Babu Selvaraj
5
Reputation points
commented 2025-03-11T20:47:24.0633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 79%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAP%3C/text%3E%3C/svg%3E)
anand pandey
0
Reputation points
1 answer
How can I export or Download Private key store in Azure Key Vault ? I need to migrate keys to somewhere else.
How can I export or Download Private key store in Azure Key Vault ? I need to migrate keys to somewhere else.
asked 2025-03-07T01:53:56.9866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 6%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGS%3C/text%3E%3C/svg%3E)
GOYAL, SHUBHAM
0
Reputation points
commented 2025-03-11T16:04:36.47+00:00
Vinodh247
29,701
Reputation points MVP
0 answers
confirm if BYOK is supported in Azure Key vault of China Cloud
I learned that BYOK is not supported in Azure China from https://learn.microsoft.com/en-us/azure/key-vault/keys/hsm-protected-keys-byok?tabs=azure-cli , but in the supported HSM Thales' official document…
asked 2025-03-04T06:17:10.53+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 87%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWM%3C/text%3E%3C/svg%3E)
Wang Meihua
135
Reputation points
commented 2025-03-11T09:58:23.6433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Givary-MSFT
35,456
Reputation points Microsoft Employee
1 answer
Unable yo disable KeyVault public network access
I am unable to Disable public access to my KeyVault. I am getting the following error: Invalid value of properties.networkAcls.bypass: ", AzureServices". Expected one of AzureServices", "None. I tried two options, both with the…
asked 2025-03-10T09:55:51.9933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(70.4, 70%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELJ%3C/text%3E%3C/svg%3E)
Lukasz Joda
1
Reputation point
commented 2025-03-10T21:26:09.7333333+00:00
TP
109.1K
Reputation points
1 answer
One of the answers was accepted by the question author.
Need soft deleted Managed HSM purged ASAP
We made two Managed HSM key vaults with purge protection and they are billing us $$$ that will be in the thousands before the retention period is over. We need these hard deleted ASAP.
asked 2025-03-10T11:13:52.57+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 71%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMH%3C/text%3E%3C/svg%3E)
Maury Hill
50
Reputation points
accepted 2025-03-10T20:15:59.1433333+00:00
Maury Hill
50
Reputation points
0 answers
Error whitelisting subnet to Key Vault
I'm having trouble whitelisting a new subnet to my Key Vault. I've previously added other subnets from other vnets without any issue. For some reason, for this vnet and subnet I'm getting an error. I'm in the Networking settings of my Key Vault (via…
asked 2025-03-10T15:46:55.7333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 44%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHP%3C/text%3E%3C/svg%3E)
Henri Pihkala
0
Reputation points
asked 2025-03-10T15:46:55.7333333+00:00
Henri Pihkala
0
Reputation points
0 answers
Is Microsoft planning to end development of the Azure Keyvault extension ?
Hi with Google planning to reduce the max lifetime of SSL certificate to 90 days is Microsoft planning to continue support for the Key vault extension as I have heard a rumour that support and development of the Microsoft certificate management…
asked 2025-03-10T10:23:27.0366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 99%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Simon Garman
0
Reputation points
edited the question 2025-03-10T13:10:54.68+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 19%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
simo-k
4,020
Reputation points
1 answer
One of the answers was accepted by the question author.
How to convert existing API Management named values from Secret type to Key Vault reference
I have received Azure Advisor recommendations regarding API Management security enhancement, specifically stating that 'API Management secret named values should be stored in Azure Key Vault.' In our organization, we have multiple API Management…
asked 2024-12-18T18:41:41.4533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 45%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESW%3C/text%3E%3C/svg%3E)
Shamod Wijerathne
20
Reputation points
commented 2025-03-07T19:50:24.17+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 1%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EES%3C/text%3E%3C/svg%3E)
Evan Steiner
0
Reputation points
7 answers
One of the answers was accepted by the question author.
Help me for a while.
Hi i want you help me, look for a Key Vault account named Dreamerinheye this is honestly my account but the ending I blocked but I need to consider my application workplace as a Key Vault Person / Cryptographer. Are you willing to help because I'm just…
asked 2025-02-20T17:23:10.4333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 42%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF3%3C/text%3E%3C/svg%3E)
FarrelAlFeshal-3361
20
Reputation points
answered 2025-03-07T19:20:27.8766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 44%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
DAN
0
Reputation points
0 answers
Permission issues with Web App connecting to Key Vault
When deploying our web app application, we knew that we wanted to import certificates to web app from Key vault. However, we've managed to get a lot of issues along the way and wanted to see if there is someone else who has run in to the same issues and…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 92%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
2 answers
One of the answers was accepted by the question author.
Expiry time of a key vs key rotation policy
Hi all, I have a question let say i have this kind of code rsa_key = key_client.create_rsa_key(key_name, size=4096) actions = [ KeyRotationLifetimeAction( KeyRotationPolicyAction.rotate, time_before_expiry="P30D" …
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 57.00000000000001%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
1 answer
how use azure vault with managed identity on azure arc enabled k8s cluster.
we have follow the given step to install and use azure vault with our on-prem cluster. so we want to use azure managed identity with our on-prem cluster thats why we use azure arc to connect our cluster to azure. steps: connect on-prem cluster to…
asked 2025-02-18T15:30:09.7833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 87%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAD%3C/text%3E%3C/svg%3E)
Akshay Dhumale
0
Reputation points
commented 2025-03-07T00:45:10.8366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 5%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
SrideviM
755
Reputation points Microsoft External Staff
1 answer
One of the answers was accepted by the question author.
Is Azure's encryption key management server solution compatible with IBM DS8000s?
Hello, We are bringing up some IBM DS8000 and TS7700 hardware in some data centers with fast connections to Azure. Is Azure's encryption key management tool(s) compatible with this IBM hardware? We are currently using IBM Security Guardium Key…
asked 2025-02-26T19:52:41.5366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 89%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDM%3C/text%3E%3C/svg%3E)
DENNIS MOORE
20
Reputation points
accepted 2025-03-06T15:30:56.3+00:00
DENNIS MOORE
20
Reputation points
1 answer
One of the answers was accepted by the question author.
Keyvault Failover across regions with private endpoint
Hello, I've read this doc https://learn.microsoft.com/en-us/azure/key-vault/general/disaster-recovery-guidance#failover-across-regions and with reference to the bullet point in that doc, quote "If you're using private link to connect to your key…
asked 2024-12-07T11:24:20.8533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 76%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPM%3C/text%3E%3C/svg%3E)
Pasquini, Matteo (Admin)
50
Reputation points
commented 2025-03-05T10:36:49.1066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 39%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Deepa
0
Reputation points
2 answers
Code Signing with Azure KeyVault -You are unauthorized to view these contents.
I have an Azure account, I have gone through all the steps for an app to Business Central, and now I need to Code Signing. I have made af KeyVault, but when I want to ad the Certificate, the menu +Generet/Import is gray, and the text say You are…
asked 2025-03-04T15:06:31.27+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 50%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMF%3C/text%3E%3C/svg%3E)
Maria Frederiksen
0
Reputation points
answered 2025-03-05T09:23:37.4233333+00:00
Maria Frederiksen
0
Reputation points
1 answer
How to fix SecurityInvalidAzureKeyVaultRecoveryLevel and key vault URL invalid error
│ Error: creating Flexible Server (Subscription: "***" │ Resource Group Name: "alle-ai-terraform-rg" │ Flexible Server Name: "alle-ai-db-fs"): polling after Create: polling failed: the Azure API returned the following…
asked 2025-02-24T12:33:56.7333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 70%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGE%3C/text%3E%3C/svg%3E)
Gyampoh Enoch
0
Reputation points
commented 2025-03-05T00:53:44.6266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 89%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHE%3C/text%3E%3C/svg%3E)
Harshitha Eligeti
1,930
Reputation points Microsoft External Staff
1 answer
One of the answers was accepted by the question author.
Unable to access key vault URI
In our Azure subscription: Modymix, the key vault resource mm-blob-storage-key was created and stored the Blob storage connection string in the vault. I have tried to use console app and the ASP.NET core app to access the key vault to retrieve the…
asked 2025-02-28T13:52:32.27+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 84%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYY%3C/text%3E%3C/svg%3E)
Yifang Yang
20
Reputation points
accepted 2025-03-04T13:56:37.4633333+00:00
Yifang Yang
20
Reputation points