Does secret identifier URL change for an auto-renewed certificate in Azure KeyVault?

Abhishek Chakraborty 21 Reputation points Microsoft Employee
2020-10-15T06:45:38.483+00:00

I'm trying to setup OneCert with Azure Key Vault, and I'm generating a new certificate from the key vault. There is an option to select auto-renewal for this. I'm wondering how the secret identifier URL would be managed in this case. Will it remain the same and the new certificate uses the same URL? I need to understand this because our service uses EV2 for deployment, and we keep these secret URLs in the parameters files in the repo. So, if it changes with auto-renewal then we would need to update them every time before deploying with the new certs.

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,181 questions
0 comments
Accepted answer
  1. JamesTran-MSFT 36,536 Reputation points Microsoft Employee
    2020-10-15T23:41:30.097+00:00

    @Abhishek Chakraborty
    Thank you for your post!

    Findings:
    After selecting the "New Version" option in the upper left, the certificate thumbprint and the version name change to reflect the newer version.
    32772-image.png

    The Certificate Identifier also changed to reflect the newer version's name.
    32763-image.png

    I hope this helps! If you have any other questions, please let me know.
    Thank you for your time and patience throughout this issue.

    ----------

    Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

    1 person found this answer helpful.
    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest