Questions tagged [azure-keyvault]

Microsoft Azure Key Vault is a cloud-hosted service that allows applications to encrypt/decrypt data using (HSM stored) cryptographic keys and store and retrieve secrets.

Azure Key Vault helps safeguard cryptographic keys and secrets used by cloud applications and services. By using Key Vault, you can encrypt keys and secrets (such as authentication keys, storage account keys, data encryption keys, .PFX files, and passwords) by using keys that are protected by hardware security modules (HSMs). For added assurance, you can import or generate keys in HSMs (keys never leave the HSM boundary). The HSMs are FIPS 140-2 Level 2 validated.

Key Vault streamlines the key management process and enables you to maintain control of keys that access and encrypt your data. Developers can create keys for development and testing in minutes, and then seamlessly migrate them to production keys. Security administrators can grant (and revoke) permission to keys, as needed.

2719 questions

votes

6 answers

Terraform with Azure Key Vault to get secret value

Is there any way to get the value of a secret from Azure Key Vault? Doesn't look like value gets exposed in the key vault secret object here.

azure terraform azure-keyvault

asked Oct 15 '17 at 03:28

experimenter

votes

2 answers

KeyVault generated certificate with exportable private key

I'm attempting to create a self signed certificate in KeyVault using the "Self" issuer. $policy = New-AzureKeyVaultCertificatePolicy -SubjectName "CN=$($certificateName)" -IssuerName "Self" -ValidityInMonths 12 $policy.Exportable =…

powershell x509 private-key azure-powershell azure-keyvault

asked May 07 '17 at 22:27

Alex KeySmith

16,657
11
74
152

votes

1 answer

Azure Key Vault - How to update the secrets

In Azure Portal > Key vaults > Secrets, I have secrets with json values (I did not create it). Something like: ... "SubscriptionId": "XXXXXXX", "BaseAuthUri": "https://login.microsoftonline.com/XXXXX/oauth/authorize?client_id="&api-version= …

azure azure-keyvault

asked Feb 21 '18 at 14:05

user1980099

votes

1 answer

Azure Key Vault - AADSTS70001: Application with identifier "xxx" was not found in the directory "xxx"

I am working on – Using azure key vault in web application. Implemented steps below, but getting error. Steps: Created azure active directory and added application in this directory. (copied - Client id and key) Created azure key vault using power…

azure azure-keyvault

asked Nov 19 '15 at 08:16

Kumar

votes

2 answers

ManagedIdentityCredential authentication unavailable, no managed identity endpoint found

Im trying to allow an app service (python) to get secrets from azure keyvault without the usage of hardcoded client id/secrets, therefore I`m trying to use ManagedIdentity. I have enabled system & user assigned functions in my service app I have…

python azure credentials azure-keyvault azure-managed-identity

asked May 03 '21 at 10:14

lior

votes

3 answers

Azure Managed Identity from within a docker container running locally

I am running a docker container consisting of a asp.net core 2.2 api. This api needs access to Azure key vault and I have signed in into Visual studio with a user that has the right access policies on the Key Vault to retrieve secrets. However, when…

docker asp.net-core azure-web-app-service azure-keyvault

asked Feb 26 '19 at 07:08

Hari Subramaniam

1,814
5
26
46

votes

1 answer

Terraform - How to get App Service object id for azurerm key vault access policy?

Using Terraform, I am trying to add a keyvault access policy to an application (that is also created in Terraform), which requires an object_it (which is GUID) of that application. In ARM template it looks like this: "objectId":…

azure terraform azure-keyvault

asked Jan 14 '19 at 21:29

tridy

1,166
1
12
21

votes

5 answers

How to serialize and deserialize a PFX certificate in Azure Key Vault?

I have a bunch of strings and pfx certificates, which I want to store in Azure Key vault, where only allowed users/apps will be able to get them. It is not hard to do store a string as a Secret, but how can I serialize a certificate in such way that…

c# azure certificate x509certificate2 azure-keyvault

asked Nov 16 '15 at 03:48

zdebyman

votes

6 answers

Net core Key vault configuration using Azure.Security.KeyVault.Secrets

I have found out it is easy to connect to Azure KeyVault using Managed Identity. The documentation shows how to do it : var azureServiceTokenProvider = new AzureServiceTokenProvider(); var keyVaultClient = new…

azure azure-keyvault azure-managed-identity

asked Jun 21 '20 at 18:48

Sam

13,934
26
108
194

votes

2 answers

Is it possible to get the private key out of Azure Key Vault Keys?

All of the data encryption/decryption examples I have seen with Azure key Vault do the encryption locally and decryption within Azure itself by using the keyVaultClient.DecryptAsync() method. I understand that this is more secure as the private key…

c# azure encryption azure-keyvault

asked Aug 21 '18 at 00:58

lahsrah

9,013
5
37
67

votes

2 answers

VSTS JSON variable substitution with secrets from Azure Key Vault

I'm doing an Azure App Service Deploy (ASP.NET Core 2.0 Web Api) in Visual Studio Team Services and want to replace some values in the appsettings.json so I read…

azure asp.net-core azure-devops azure-pipelines-release-pipeline azure-keyvault

asked Dec 12 '17 at 15:15

Erwin

3,060
26
24

votes

4 answers

How to use MSI for development in visual studio?

I need to get access to my Key Vault during development and debugging. Is it possible via using managed service identity? I see that my code can get this credentials when the app is deployed on VM, but what if I need them during development on my…

azure azure-keyvault azure-managed-identity

asked Dec 11 '17 at 15:34

Kostya Vyrodov

6,257
5
23
34

votes

3 answers

az cli: How to retrieve key vault secret value alone, with no double quotes?

Using az cli command of az keyvault secret show --name $SecretName --vault-name $KeyVaultName --query value) returns the secret with double quotes. This causes my subsequent REST call to fail. How do I return the secret value only, no double…

azure azure-keyvault azure-cli azure-secrets

asked Sep 17 '21 at 13:57

SeaDude

3,725
6
31
68

votes

1 answer

Bind Key Vault settings to class

In ASP.NET Core, if reading configuration from a JSON app.settings file I can bind a section to an object like this: services.Configure(Configuration.GetSection("Section")) Is there a straightforward way to do this with a group of…

asp.net-core azure-keyvault

asked Mar 16 '19 at 20:12

zola25

1,774
6
24
44

votes

2 answers

Configuration Error Azure Key Vault as a Visual Studio Connected Service ConfigurationBuilder

I am trying to wire up Azure Key Vault in my ASP.NET (.Net Framework) MVC Web App using Visual Studio 2017 Community 15.7.5 Connected Service targeting .Net 4.7.2. It adds a configBuilder with the name AzureKeyVault with an attribute called…

asp.net-mvc visual-studio-2017 azure-keyvault

asked Jul 25 '18 at 21:28

John Donnelly

Prev 1

…

99 100 Next