The error message typically indicates that Azure Front Door doesn’t have the necessary permissions to access the secret in your Key Vault. Here are some steps you can follow to resolve this issue:
- Register Azure Front Door: Register the service principal for Azure Front Door as an app in your Microsoft Entra ID (Azure AD) using Azure PowerShell or the Azure CLI. The Application Id is
205478c0-bd83-4e1b-a9d6-db63a3e1e1c8
. - Grant Azure Front Door access to your key vault: In your key vault account, select Access policies and create a new access policy with Get Secret & Certificate permissions to allow Front Door to retrieve the certificate. In Select Principal, search for
205478c0-bd83-4e1b-a9d6-db63a3e1e1c8
, and selectMicrosoft.AzureFrontDoor-Cdn
.
If you’ve already done these steps and are still encountering the issue, it might be worth trying them again.
If you find this response helpful and it resolves your issue, please consider marking it as “Accepted” or giving it an upvote. This will help others in the community find the solution more easily.