Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,259 questions
0 answers
Azure Machine Learning workspace cannot access Datastore, Container Registry
Hi, I have created an Azure Machine Learning workspace, giving it a user-assigned identity. This identity has both a contributor role over the whole resource group, and a Key Vault Secrets Officer role over the key vault used by the AML workspace It was…
asked 2024-09-19T16:35:55.04+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 44%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
Vengathesa Sarma, Satya
0
Reputation points
edited the question 2024-09-19T16:37:24.3266667+00:00
Vengathesa Sarma, Satya
0
Reputation points
3 answers
VNet integrated flex consumption app unable to connect to KeyVault via service endpoint
Hi, I have a question about vnet integrated flex function apps and accessing other resources privately using service endpoints Situation: I have Flex consumption app successfully deployed and vnet integrated so all outbound traffic is via the virtual…
asked 2024-06-30T23:05:51.97+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 85%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
David
20
Reputation points
edited the question 2024-09-19T15:42:42.61+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 16%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERG%3C/text%3E%3C/svg%3E)
Rakesh Gurram
7,000
Reputation points Microsoft Vendor
1 answer
How to create key vault in AME tenent subscription? always blocked by deny .
Hi Team, when I create key vault using AME account, it always show below error, could anyone help on this? Thank you!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 81%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EES%3C/text%3E%3C/svg%3E)
1 answer
Azure Function App - https activity authentication type is "Active Directory OAuth", it contains Tenant, ClientId, Credential Type, Secret value. how to store all these four values in Azure Keyvalut and pass to https securely without exposing secrets
Hi All, I want to secure Logic Apps - HTTPS activity connectivity details . Currently i am following authentication type is "Active Directory OAuth". It has Tenant Detail, Client ID, Credential Type and Secret Value. in Key vault need to…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 31%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
1 answer
MS Azure | Keyvault and CDN question
Hi Experts, I want validate couple of things as I am working on implementing some of the audit findings from our azure team. Keyvault that is being used by Azure CDN endpoint can't have IP based whitelisting. We can not have a private endpoint…
asked 2024-09-10T07:20:13.5066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 36%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAE%3C/text%3E%3C/svg%3E)
Azure-enthusiast
40
Reputation points
commented 2024-09-19T15:39:48.5333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Akhilesh
8,950
Reputation points Microsoft Vendor
1 answer
Why does "Key Vault Certificate User" role have permissions to read keys and secrets as well?
Key Vault Built-In Role Assignment "Key Vault Certificate User" has permissions to read keys and secrets as well. Note that the more privileged role "Key Vault Certificates Officer" on the other hand doesn't have permissions to read…
asked 2024-09-09T08:32:50.57+00:00
Karan Agarwal
0
Reputation points Microsoft Employee
commented 2024-09-19T13:29:58.0233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Navya
9,640
Reputation points Microsoft Vendor
1 answer
When 'enabledfordiskencryption' is True, networkAcLs.bypass must include "Azure Services".
I am trying to create a key vault and selected only the option Azure Disk encryption for volume encryption under Access policy. For networking it was left to default i.e. all networks. But the deployment is failing for key vault. I have attached the…
asked 2024-08-08T07:04:07.8133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 1%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Satyam
25
Reputation points
commented 2024-09-18T23:48:24.8233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 27%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERP%3C/text%3E%3C/svg%3E)
Raja Pothuraju
5,345
Reputation points Microsoft Vendor
1 answer
One of the answers was accepted by the question author.
How to setup Azure Key Vault for an external 3rd party application
I'm just new with using Azure. Haven't undergone any trainings whatsoever. I would just like to seek for help on how should I create an Azure Key Vault and use it for a non-azure application.
asked 2024-01-17T03:38:35.6566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(230.39999999999998, 71%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDF%3C/text%3E%3C/svg%3E)
Deien Fernandez
20
Reputation points
edited the question 2024-09-18T11:27:08.3166667+00:00
Rakesh Gurram
7,000
Reputation points Microsoft Vendor
1 answer
(Unauthorized) Received token issued for incorrect tenant. Received tenant ID=XXXX, but expected tenant ID=YYYY when issuing Azure powershell commands
Hello, I'm trying to train for Azure HSM hardware implementation job and going through some of the Azure training. Specifically, I'm going through this part of some training and trying to create various keys mentioned using the Azure PS with the latest…
asked 2024-09-12T00:56:06.49+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 92%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
Chris
1
Reputation point
edited an answer 2024-09-18T05:08:14.7366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Givary-MSFT
32,316
Reputation points Microsoft Employee
0 answers
how to connect to Azure Key Vault using CSI driver in an Azure Kubernetes Service (AKS) cluster
I followed this post https://learn.microsoft.com/en-us/azure/service-connector/tutorial-python-aks-keyvault-csi-driver?tabs=azure-portal It is ok with KV secret, but I want to use the KV cert. I got the error message: The certificate certificate does not…
1 answer
One of the answers was accepted by the question author.
APIM connection to KV via Managed Identity fails
I'm following the setup described here: https://learn.microsoft.com/en-us/azure/api-management/api-management-howto-properties?WT.mc_id=Portal-fx&tabs=azure-cli I setup APIM with a system managed identity, then go to KV, grant Key Vault Secrets user…
asked 2023-02-11T14:37:02.0733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 62%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
Marcelo Silva
30
Reputation points Microsoft Employee
edited the question 2024-09-17T16:22:18.72+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 76%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
VarunTha
7,810
Reputation points Microsoft Vendor
1 answer
Inconsistent AzureSigningTool output - Unable to sign a .exe file
Hi, I have been facing different challenges with the usage of AzureSingTool in an Azure DevOps Pipeline. After following the "WalkThrough" i still cannot sing a single file. My configuration is following: I am using an existing service…
asked 2024-09-05T11:23:09.03+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 76%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERC%3C/text%3E%3C/svg%3E)
Rivera Claro, Oscar Javier
0
Reputation points
commented 2024-09-16T19:39:32.58+00:00
Akhilesh
8,950
Reputation points Microsoft Vendor
1 answer
When will App Gateway fully support RBAC Key Vault security model?
Looking at this document: https://learn.microsoft.com/en-gb/azure/application-gateway/key-vault-certs In "How Integration Works", it states: "Azure Application Gateway integration with Key Vault supports both Vault access policy and Azure…
asked 2024-09-05T11:35:30.8433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 21%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERA%3C/text%3E%3C/svg%3E)
Robinson, Andrew
0
Reputation points
commented 2024-09-16T19:39:18.2166667+00:00
Akhilesh
8,950
Reputation points Microsoft Vendor
1 answer
How often does SQL Server contact the Azure Key Vault for a Certificate or Key?
I would like to use Azure Key Vault rather than Windows Store to store my SQL Server TDE Certificates/Keys, Server Certificates, and Always Encrypted Keys. However, I want to know how often the server connects to Azure Key Vault and polls the keys and…
asked 2024-09-13T14:14:38.8433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 1%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWG%3C/text%3E%3C/svg%3E)
Wallace, Glenn
0
Reputation points
answered 2024-09-14T03:21:38.9166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 4%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Sina Salam
10,176
Reputation points
0 answers
Function app diagnostics says can't access KeyVault secrets, but environment variables says its connected
When my function app runs, it reads from env variables to get secrets from Key Vault. But its behaving as if it didn't get any values. When I check env variables in Azure, it says the Key Vault reference is resolved But in Function App Diagnostics it…
asked 2024-09-12T12:07:30.0166667+00:00
Gareth Doherty
21
Reputation points
commented 2024-09-13T07:23:51.79+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 13%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAE%3C/text%3E%3C/svg%3E)
Alexander Eriksson
5
Reputation points
0 answers
Key vault Certficate Secret imported on FrontDoor but cannot select the secret for BYOC for domain verification
Key vault Certificate Secret added to FrontDoor but when trying the domain verification, You are unable to select the secret from FrontDoor for BYOC. Gave the Managed Identity Azure FrontDoor Secrets reader on resource group, and Secrets Reader on the…
asked 2024-08-25T12:44:45.6433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 80%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGC%3C/text%3E%3C/svg%3E)
Garth Cornelis
0
Reputation points
commented 2024-09-12T21:26:54.53+00:00
Raja Pothuraju
5,345
Reputation points Microsoft Vendor
2 answers
Azure APIM Standard V2 Custom Domain - RSA-HSM key stored in keyvault - private key issue
Issue: APIM on Standard V2 SKU, custom domain, obtaining a RSA-HSM non-exportable private key cert stored in Key Vault results in error message about that cert not having a private key. I cannot work out if RSA-HSM certs are not supported by the APIM to…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 53%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
I clicked on Access policies on my ley vault, but i was shown this "Access policies not available". How do i make it available?
Access policies not available. The access configuration for this key vault is set to role-based access control. To add or manage your access policies, go to the Access control (IAM) page. How can I resolve this
asked 2024-09-09T11:45:38.9033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 72%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECO%3C/text%3E%3C/svg%3E)
Charles Onyebuchi
20
Reputation points
accepted 2024-09-11T10:05:16.8833333+00:00
Charles Onyebuchi
20
Reputation points
4 answers
data factory managed identity is not being identified as a trusted service by keyvault
We have an issue with an ADF pipeline, when attempting to reach a secret from a KV in the same RG, the connection fails with the following error: "Client address is not authorized, and caller is not a trusted service" The setup is made…
asked 2024-07-23T21:23:39.3533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(38.4, 10%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
Reyes Monsalve, Ruben Dario
26
Reputation points
answered 2024-09-10T15:38:56.44+00:00
Reyes Monsalve, Ruben Dario
26
Reputation points
1 answer
One of the answers was accepted by the question author.
How to fix Backup vault name error
Hello, This is the first time I use Microsoft Azure, right now I am trying to back up and restore a sample database. While creating the new vault name, I did try to put in my own backup vault name, but whatever I put in returns this error, even when I…
asked 2024-09-10T04:32:25.0533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 7.000000000000001%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVT%3C/text%3E%3C/svg%3E)
VIET TRUNG NGUYEN
20
Reputation points
accepted 2024-09-10T08:17:06.66+00:00
VIET TRUNG NGUYEN
20
Reputation points