Questions tagged [azure-keyvault]

Microsoft Azure Key Vault is a cloud-hosted service that allows applications to encrypt/decrypt data using (HSM stored) cryptographic keys and store and retrieve secrets.

Azure Key Vault helps safeguard cryptographic keys and secrets used by cloud applications and services. By using Key Vault, you can encrypt keys and secrets (such as authentication keys, storage account keys, data encryption keys, .PFX files, and passwords) by using keys that are protected by hardware security modules (HSMs). For added assurance, you can import or generate keys in HSMs (keys never leave the HSM boundary). The HSMs are FIPS 140-2 Level 2 validated.

Key Vault streamlines the key management process and enables you to maintain control of keys that access and encrypt your data. Developers can create keys for development and testing in minutes, and then seamlessly migrate them to production keys. Security administrators can grant (and revoke) permission to keys, as needed.

2719 questions

votes

2 answers

In Azure, why is an AuthClientId also called an Application Id?

I am finding Application Registrations in Azure very confusing. In my question here AuthClientId and Application Id turned out to be the same thing, so why are two names being used? What is the logic behind this choice of naming? [Update] From Joy's…

asked Jun 28 '18 at 06:13

Kirsten

15,730
41
179
318

votes

10 answers

Unable to get access to Key Vault using Azure MSI on App Service

I have enabled Managed Service Identities on an App Service. However, my WebJobs seem unable to access the keys. They report: Tried the following 3 methods to get an access token, but none of them worked. Parameters: Connectionstring: [No connection…

azure azure-webjobs azure-web-app-service azure-keyvault azure-managed-identity

asked Sep 19 '17 at 18:23

Jerome Haltom

1,670
2
17
23

votes

2 answers

Terraform - How to attach SSL certificate stored in Azure KeyVault to an Application Gateway

I have a Terraform script that create an Azure Key Vault, imports my SSL certificate (3DES .pfx file with a password), and creates an Application Gateway with a HTTP listener. I'm trying to change this to a HTTPS listener that uses my SSL…

terraform ssl-certificate azure-keyvault azure-application-gateway

asked Sep 15 '21 at 12:20

wertyq

votes

2 answers

Can you restrict which keys/secrets a user can access in an Azure Key Vault?

I'm provisioning a Key Vault in Azure. I wish to grant a development team permissions to be able to access and create keys and secrets and certs in this vault, but not have access to ALL of the keys, secrets and certs in the vault. Is that possible…

azure azure-devops azure-keyvault

asked May 19 '20 at 16:20

208_man

1,440
3
28
59

votes

1 answer

Either this secret is disabled or you do not have the "Get" secret permission

On browsing disabled secret version, getting error "Either this secret is disabled or you do not have the "Get" secret permission". I have full permissions on secret (checked thru Access Policies). Any help on how to enable older version again?

azure-keyvault

asked Mar 08 '19 at 00:52

Purna Chandra Rao Chinta

votes

5 answers

How to get all secrets in one call Azure key vault

I am using sample code explain here https://github.com/Azure-Samples/app-service-msi-keyvault-dotnet but they only explained how can we get single secrete not list of secrete. so to get all secrete I'm using this code sample var all =…

c# .net azure azure-keyvault

asked Nov 27 '18 at 12:10

Ginish Sharma

votes

4 answers

Can't Access Azure Key Vault from desktop console app

I am having trouble accessing a secret from an Azure key vault. I suspect the problem is that I don't adequately understand the terminology, so the arguments I'm supplying to various API calls are wrong. Here's the basic code I'm using: …

c# azure azure-active-directory azure-keyvault

asked Dec 18 '17 at 20:01

Mark Olbert

6,584
9
35
69

votes

2 answers

Using Adal for accessing the Azure KeyVault on behalf of a user

The following is in a console application and ClientID, RedirectUri is from the created native app in azure active directory. var authContext = new AuthenticationContext(string.Format("https://login.windows.net/{0}","common"),new FileCache()); var…

azure azure-active-directory azure-keyvault

asked May 07 '15 at 09:08

Poul K. Sørensen

16,950
21
126
283

votes

4 answers

"Key vault reference error" in azure web app configuration setting

I have a private certificate that was generated by azure for a web app for linux containers. I want to pass this value to my .net core app via the web app configuration settings in the the azure portal. This is part of a pipeline CI-CD process and…

azure ssl-certificate identityserver4 azure-keyvault azure-webapps

asked Sep 23 '20 at 22:09

J King

4,108
10
53
103

votes

1 answer

Invalid signature when creating a certificate using BouncyCastle with an external Azure KeyVault (HSM) Key

I'm trying to generate a certificate self-signed by a KeyPair stored in Azure KeyVault. My end result is a certificate with an invalid signature: Generating the certificate parameters: DateTime startDate = DateTime.Now.AddDays(-30); …

c# encryption .net-core bouncycastle azure-keyvault

asked Aug 05 '20 at 15:47

NOP-MOV

votes

2 answers

Creating a Secret Scope in Databricks backed by Azure Key Vault fails

You can create scopes in Databricks backed by Azure Keyvault instead of using the Databricks CLI. However, when you try to create a Scope, an obscure error message (with a spelling mistake!) is shown. It appears as not many people encounter this…

azure azure-keyvault azure-databricks

asked Jun 11 '19 at 05:46

Rodney

5,417
7
54
98

votes

1 answer

ASP.NET Core: IConfigurationBuilder Does Not Contain Definition For AddAzureKeyVault

I am upgrading my ASP.NET Core web app to .NET Core 2.1, but am getting the following error: IConfigurationBuilder Does Not Contain Definition For AddAzureKeyVault This code works in .NET Core 2.0. It looks like a library is missing in .NET Core…

c# asp.net-core asp.net-core-2.1 azure-keyvault

asked Sep 30 '18 at 16:28

Brandon Minnick

13,342
15
65
123

votes

2 answers

Access Key Vault from local Service Fabric cluster with MSI

I want to access the Key Vault from my Service Fabric application via Managed Service Identity (MSI). I have enabled MSI on the virtual machine scale set in the Azure Portal and given it access to my Key Vault resource. This works like a charm up in…

azure azure-service-fabric azure-keyvault azure-managed-identity

asked Apr 16 '18 at 14:14

Mikko

votes

2 answers

how to get the latest secret version value from azure key vault in one rest api call

I can get the secret from azure key vault in rest api if I already know the version number using this endpoint: https://my-key-vault-dev.vault.azure.net/secrets/MyTestSecret/13f8347b8518483f8236670197497c93?api-version=2016-10-01 But what if I…

azure azure-keyvault

asked Jan 24 '18 at 22:00

Bill Software Engineer

7,362
23
91
174

votes

2 answers

How to store Public Certiticate (.cer file) in Azure Key Vault

How can I upload or store public key (.cer) file in azure keyvault. From the keyvault panel it gives error when I tried to upload any .cer file where It works for .pfx file.

azure-keyvault

asked Apr 21 '17 at 07:32

Anup

1,502
2
15
31

Prev 1 2

…

99 100 Next