Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,368 questions
1 answer
Key Vault compliant
Is the Azure Key Vault FIPS 140 Compliant or is another subscription needed?
asked 2025-02-09T02:49:53.5133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 1%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGS%3C/text%3E%3C/svg%3E)
Gerald Strzykalski
0
Reputation points
commented 2025-02-11T21:50:21.7433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAV%3C/text%3E%3C/svg%3E)
Akhilesh Vallamkonda
11,680
Reputation points Microsoft Vendor
0 answers
Config-server with Azure Key Vault Cloud config
Hi guys I really need some insight here. I have an actual setup of config-server + centralized git configuration repo + App client (running on an k8 cluster) App connects to config-server, that connects to the git repo, fetch the configuration and…
asked 2025-02-03T21:18:28.8033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 2%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVE%3C/text%3E%3C/svg%3E)
Victor Einstenberg
0
Reputation points
commented 2025-02-11T21:20:13.8166667+00:00
Victor Einstenberg
0
Reputation points
1 answer
Error when retrieving AKV secret in ADF rest API linked service
Hi, Is there any solution for this issue? I got error when retrieving AKV secret using parameter ."message": "ErrorCode=InvalidTemplate, ErrorMessage=The template function 'linkedService' is not defined or not valid." Here are the…
asked 2025-02-10T06:09:11.6466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 20%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
Carrie
30
Reputation points
edited a comment 2025-02-11T18:05:34.4233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 8%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EST%3C/text%3E%3C/svg%3E)
Smaran Thoomu
19,955
Reputation points Microsoft Vendor
1 answer
Connectivity on Key vault
Hello, I have a Key Vault in my subscription, and now there is an S360 KPI flagging my Key Vault, indicating that I should create a private endpoint instead of using public network access with specific IPs and VNet. Now, I have a doubt about…
asked 2025-02-05T14:53:18.51+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 16%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESA%3C/text%3E%3C/svg%3E)
Srikanthreddy Adla (TATA CONSULTANCY SERVICES LTD)
0
Reputation points Microsoft Vendor
commented 2025-02-11T17:57:45.7233333+00:00
Srikanthreddy Adla (TATA CONSULTANCY SERVICES LTD)
0
Reputation points Microsoft Vendor
1 answer
One of the answers was accepted by the question author.
Which procedure to follow to start adding the Azure Storage Account Access keys for one day rotation?
In order to perform Automated Azure Storage account Access keys, I am following this article: https://learn.microsoft.com/en-us/azure/key-vault/secrets/tutorial-rotation-dual?tabs=azure-cli#create-and-deploy-the-key-rotation-function Since I have 500+…
asked 2025-02-06T05:47:40.66+00:00
EnterpriseArchitect
5,666
Reputation points
commented 2025-02-11T11:47:48.2366667+00:00
EnterpriseArchitect
5,666
Reputation points
1 answer
Azure Databricks and Key vault key versioning
We are building a Data encryption solution and are using pyspark AES encrypt and AES Decrypt function to encrypt the PII columns in the Databricks tables on Unity catalog. We have created views on top of these tables and using the same encryption key we…
asked 2025-01-28T07:07:43.85+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 34%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHK%3C/text%3E%3C/svg%3E)
Hemanth Kumar
0
Reputation points
commented 2025-02-11T09:21:50.0066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Navya
15,150
Reputation points Microsoft Vendor
0 answers
Linked Service Can't connect to parametrized KeyVault linked service
Hello, I need help. Sorry, somewhat long description, but it to the point. Here is the scenario: I may have serval Key vaults under my Azure subscription. They are copy of each others except the values of some secrets differ (production vs. Test…
asked 2023-04-20T21:02:30.5133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 48%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDR%3C/text%3E%3C/svg%3E)
Dmitriy Ryabin
6
Reputation points
commented 2025-02-10T09:42:43.4966667+00:00
Carrie
30
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure API URL Whitelist Acceptance Questions
For the *.core.windows.net and *.vault.azure.net URLs in the Azure API URL Whitelist, Whitelist registration is required individually, not *. May I know the list of URLs that need to be allowed for that URL?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 48%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJY%3C/text%3E%3C/svg%3E)
0 answers
Azure Key Vault Encrypt with AES returns 413 Request Entity Too Large
I'm using a 256 bit AES key that's stored in Azure Managed HSM and I'm trying to encrypt data using the Azure SDK. When I try to encrypt the data using the AES key, the SDK returns a 413 Request Entity Too Large error. The data is likely in JSON format…
asked 2025-02-04T18:25:25.89+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 46%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBB%3C/text%3E%3C/svg%3E)
Bobby Bridges
0
Reputation points
commented 2025-02-06T22:51:09.9233333+00:00
Akhilesh Vallamkonda
11,680
Reputation points Microsoft Vendor
2 answers
Entra Key Vault Key Rotation Policy to Rotating the Storage Account Key
I created a Key Vault and granted my storage account the Key Vault Officer role. I then setup a rotation policy as outline in the article below. I see versions of keys listed in Key Vault but the last rotation time stamp on the storage account key is…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 46%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER4%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Installing keyvault extension on Azure Linux - keyvault extension not respecting keyVaultId
Hello there, I'm trying to setup a simple prototype where I can pull a certificate from AKV automatically to my Azure Linux VM. Please note that we have the VM and the KeyVault created in the same subscription but different ResourceGroups. Assume the…
asked 2025-01-31T18:32:15.1833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 65%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERC%3C/text%3E%3C/svg%3E)
Ranjith Chevanan
20
Reputation points
accepted 2025-02-05T14:38:56.6466667+00:00
Ranjith Chevanan
20
Reputation points
1 answer
"errorMessage": "interaction_required: AADSTS16000: User account '{EUII Hidden}' from identity provider 'live.com' does not exist in tenant 'Microsoft Services' and cannot access the application '74658136-14ec-4630-ad9b-26e160f
Hello there Azure community, Realized an Azure account is connected to my hotmail email address/microsoft account when attempting to remove an expired credit card from the subscription section. The amount of things that seem to be configured within…
asked 2025-02-02T17:13:41.9+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 3%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELP%3C/text%3E%3C/svg%3E)
Luke Poyner
0
Reputation points
commented 2025-02-05T06:59:52.8566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 30%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGP%3C/text%3E%3C/svg%3E)
Goutam Pratti
1,575
Reputation points Microsoft Vendor
1 answer
Expiry time of a key vs key rotation policy
Hi all, I have a question let say i have this kind of code rsa_key = key_client.create_rsa_key(key_name, size=4096) actions = [ KeyRotationLifetimeAction( KeyRotationPolicyAction.rotate, time_before_expiry="P30D" …
asked 2025-01-28T15:57:58.31+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 57.00000000000001%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
Robos
0
Reputation points
edited the question 2025-02-04T12:07:51.67+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 47%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMR%3C/text%3E%3C/svg%3E)
Mounika Reddy Anumandla
2,265
Reputation points Microsoft Vendor
3 answers
One of the answers was accepted by the question author.
List all HSM active and deleted
Hi, How to list all HSMs down which are actively used and associated with Key Vault, and which has been deleted but not purged? A list of Key vaults can be retrieved by Azure portal or CLI, but nowhere for HSMs.
asked 2024-01-25T10:27:19.2166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 49%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH%3C/text%3E%3C/svg%3E)
hashimotor
20
Reputation points
answered 2025-02-03T14:34:36.5233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 9%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHD%3C/text%3E%3C/svg%3E)
Hervé Dafflon | Sweetsport
0
Reputation points
1 answer
Azure Key Vault Managed HSM - Security Domain Certificate Renewal
As documented by Azure, when activating an Azure Key Vault Managed HSM resource you must create a security domain by sending at least three RSA public keys to the HSM. My question is do the certificates/keys need to be updated prior to their set…
asked 2025-01-03T18:59:56.7666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 55.00000000000001%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
Jonathan Maas
20
Reputation points
edited an answer 2025-01-30T08:56:28.87+00:00
Navya
15,150
Reputation points Microsoft Vendor
2 answers
Set-AzSqlInstanceTransparentDataEncryptionProtector Configuration Error
Error: Set-AzSqlInstanceTransparentDataEncryptionProtector: Long running operation failed with status 'Failed'. Additional Info:'The requested server key was not found.' The keyid that i used is already the one generated in the…
asked 2024-10-25T01:39:39.38+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 49%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAC%3C/text%3E%3C/svg%3E)
Ald Christian Santos
5
Reputation points
answered 2025-01-30T04:29:47.69+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 14.000000000000002%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELH%3C/text%3E%3C/svg%3E)
Leigh Hocking (DT)
0
Reputation points
2 answers
Character restrictions when creating an EV Certificate in Key Vault
Hi, I am trying to create a certificate for code signing within azure key vault (Web Portal). Our official company name contains a + and - character. Is there a restriction using those for the Subject entry CN=... ? as soon as either of those…
asked 2022-01-12T15:40:09.377+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 13%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAR%3C/text%3E%3C/svg%3E)
Andre Reschke
6
Reputation points
commented 2025-01-27T17:13:50.91+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 60%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMH%3C/text%3E%3C/svg%3E)
Mike Hebert
0
Reputation points
1 answer
Using a private RSA key stored in key vault to ssh within python code
I am confused about how to use my keys stored in key vault. My scenario: I have an Azure function, which needs to ssh into a virtual machine I use Python's paramiko library to manage ssh access to this VM Basically, I need to mimic the operation in…
asked 2025-01-24T17:16:40.5533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 70%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZ%3C/text%3E%3C/svg%3E)
ZZ
40
Reputation points
answered 2025-01-24T23:30:50.3133333+00:00
Goutam Pratti
1,575
Reputation points Microsoft Vendor
1 answer
I changed my email and now I can't see my Key Vault
I have a VM in Azure running some web services. I use Azure Key Vault to generate an SSL certificate for secure comms. I had to change my email on my Azure account. My account was transferred by MS support, but the Key Vault says my Tenant ID has changed…
asked 2025-01-20T04:40:36.78+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 43%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKC%3C/text%3E%3C/svg%3E)
Krisse Casimiro
0
Reputation points
commented 2025-01-24T22:23:05.4866667+00:00
Goutam Pratti
1,575
Reputation points Microsoft Vendor
2 answers
How to add my Trusted Signature to my Azure Key Vault?
Hi, I created a trusted signature in my Azure account. I would like to use it to sign excel files. I understand that I need to export it as PFX. I believe I need Azure key vault to do so, correct? If I get Key vault, how do I transfer / add my trusted…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 91%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 52%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)