How to grant App access to Azure Key Vault with read-only access to public keys only?
Is it possible to assign a role to an Azure app service to access keys in a Key Vault, but the application should only have access to the public keys only? Thanks in advance for your time.
Azure Vault on Standalone ASPNET Core WebApp
If I develop ASPNET Core 3.1 Webapp and distribute the Docker to Clients and like to secure symmmetric secret key for the WebApp access. Each docker will have their individual secret key. My Question is 1) Would someone with access to the Docker-Compose…
Import Cert into Key vault using REST API/cURL
I am trying to import Let's Encrypt Base64-encoded cert and private key using below REST API but its failing: https://video2.skills-academy.com/en-us/rest/api/keyvault/importcertificate/importcertificate?source=docs#jsonwebkeytype The command I am…
Azure account key
hello guys, trying to use Microsoft Sustainability Calculator. While filling up the form it's asking for an account key. We tried the storage account key but doesn't seem to work. Is there an Azure account key? (not azure storage account key) If…
is there a timelimit on a KEK to import BYOK into Azure Keyvault
Is there a timelimit on the KEK to import BYOK from a customer HSM. AWS has a timelimit of 24 hours for a similar process. Since we have some issues importing keys, i want to make sure this is not the issue we are facing. thanks and regards, …
know if key vault is platform or customer managed
How do I tell if a VM, or a backup is encrypted using a platform managed or a customer-managed key vault? I have a client who has multiple VMs, and uses Azure to backup in a different region and has established at least 1 key vault. How do I tell what…
![](https://techprofile.blob.core.windows.net/images/SbBXW6wumkK4XgZSyURk4A.png?8D926C)
KeyVault access 403 - Forbidden: Access is denied.
Hi Team, I have created KeyVault in Azure and assigned permission to user. (Added in access policies) He is able to access from portal.azure.com, But can't able to acces using Vault name like (https://snf-app-ep04dw.vault.azure.net/) Getting 403…
![](https://techprofile.blob.core.windows.net/images/PT7QlfEdr0qdUKsDf1u5tw.png?8D801B)
sync autorenewed certificate in keyvault with AKS secrets
I'm storing TLS certificates of AKS in Azure Keyvault certificates. When these certificates in Key Vault auto renews, how that can be automatically synced with AKS secrets with out devops?
Can not activate a Managed HSM
Hi, I tried to follow the quickstart to create and activate a managed HSM: https://video2.skills-academy.com/en-us/azure/key-vault/managed-hsm/quick-create-cli Unfortunately, the download security domain command is failed so it prevents me from activating my…
error downloading credentials from vault
I urgently need to perform a backup recovery and I get an error when I try to download vault credentials. I never saw that error. Anybody know?
CH CharanKanalaCreated on November 13, 2020 Microsoft.Azure.KeyVault Deprecated ? Unable to use Azure.Security.KeyVault.Secret package with .NET Framework based applications
Hi, Below site says that Microsoft.Azure.KeyVault package has been deprecated and use package Azure.Security.KeyVault.Secrets instead. https://www.nuget.org/packages/Microsoft.Azure.KeyVault/ I have developed an Azure Function with .NET Framework…
![](https://techprofile.blob.core.windows.net/images/PT7QlfEdr0qdUKsDf1u5tw.png?8D801B)
List of Azure Data Storage Services that support BYOK
Hi, Could you confirm the list of "Azure Data Storage" Services that support BYOK (Bring Your Own Key), please. Thanks
KeyVault Secrets read acces for guest users access packages
Hey, we're trying to set up a key vault in a way, that specific guest users in our Azure Active Directory can read the secrets in it. For that we set up a access package, which allows guest from a specific connected organization to be added to a group,…
![](https://techprofile.blob.core.windows.net/images/PT7QlfEdr0qdUKsDf1u5tw.png?8D801B)
Generating SAS tokens for files inside my blob storage containers via key vault
Hi, I have a Microservice which is the owner of a specific blob storage. Because I don't want to store any storage keys in configuration files of the microservice, I would like to use Key Vault to generate SAS Tokens for me. Key Vault then will…
![](https://techprofile.blob.core.windows.net/images/Nw9OZIzCZUiYqD_eTMTQaA.png?8D812F)
Unable to retrieve OAuth access token using Azure Key vault scope with Client credentials grant type
I am trying to use Azure Key vault scope in my Oauth 2.0 request to retrieve the access token using Client credentials grant type from another cloud provider.(IBM Cloud) From IBM cloud the request is been received to Azure Oauth endpoint in the below…
Can on-premises app perform Azure AD Integrated authentication to Azure KeyVault
I read on this link , that we can use AD Integrated authentication to access Azure Key Vault from on-premises application . I know Azure Key Vault supports different authentication types like Managed Identity, by using certificate or by presenting client…
![](https://techprofile.blob.core.windows.net/images/PT7QlfEdr0qdUKsDf1u5tw.png?8D801B)
Issue certificate renew using HSM vault REST API
Hi, I've created a rootCA using the following API: https://video2.skills-academy.com/en-us/rest/api/keyvault/createcertificate/createcertificate POST {vaultBaseUrl}/certificates/{certificate-name}/create?api-version=7.1 It was created for 20…
![](https://techprofile.blob.core.windows.net/images/PT7QlfEdr0qdUKsDf1u5tw.png?8D801B)
Regarding storing/rotating azure storage account keys in Azure Key Vault and grant them for programmatic access / to mount the drive in VM
Hi Folks, I have a doubt and need assistance to clarify below mentioned with regard to storing/rotating azure storage account keys in Azure Key Vault and grant them for programmatic access / to mount the drive in VM. Hypothetically, if we are in a…
![](https://techprofile.blob.core.windows.net/images/PT7QlfEdr0qdUKsDf1u5tw.png?8D801B)
Key Vault authentication
Hi, What is the best way of setting up authentication for key vault when you have the following? One Key Vault for each Subscription Dedicated resource group for each Key Vault Questions: Management plane - RBAC Should it be dedicated…
Authorize with Key Vault in Powershell
Hey everyone I am trying to get an overview over our O365-Licences in PRTG. I was able to see all licences after running this script on a sensor in PRTG: https://github.com/debold/PRTG-O365Licensing The problem is that I had to run the skript…
![](https://techprofile.blob.core.windows.net/images/PT7QlfEdr0qdUKsDf1u5tw.png?8D801B)