Stack Overflow
Stack Overflow

Questions tagged [azure-keyvault]

Microsoft Azure Key Vault is a cloud-hosted service that allows applications to encrypt/decrypt data using (HSM stored) cryptographic keys and store and retrieve secrets.

Azure Key Vault helps safeguard cryptographic keys and secrets used by cloud applications and services. By using Key Vault, you can encrypt keys and secrets (such as authentication keys, storage account keys, data encryption keys, .PFX files, and passwords) by using keys that are protected by hardware security modules (HSMs). For added assurance, you can import or generate keys in HSMs (keys never leave the HSM boundary). The HSMs are FIPS 140-2 Level 2 validated.

Key Vault streamlines the key management process and enables you to maintain control of keys that access and encrypt your data. Developers can create keys for development and testing in minutes, and then seamlessly migrate them to production keys. Security administrators can grant (and revoke) permission to keys, as needed.

2719 questions
11
votes
2 answers

Remote name could not be resolved for Azure Key Vault

I have successfully created an Azure Key Vault, but I cannot add any secrets to it. I am following the instructions (https://azure.microsoft.com/en-gb/documentation/articles/key-vault-get-started/), but when I try $secretvalue =…
Dan O'Leary
  • 2,660
  • 6
  • 24
  • 50
10
votes
5 answers

Azure key vault creation error: VaultAlreadyExists - I can't find the existing vault

I'm trying to create a key vault in Azure using this CLI command... az keyvault create --location $location --name $keyVaultName --resource-group $resourceGroupMainName --output none But this returns the error... (VaultAlreadyExists) The vault…
awj
  • 7,482
  • 10
  • 66
  • 120
10
votes
4 answers

How to get Access Policies of the Azure KeyVault using Azure PowerShell

I'm working on an Azure Powershell script which compares the secrets and the access policies of two Azure KeyVaults. For comparing the secrets of the Azure KeyVault I've used the command Get-AzureKeyVaultSecret which worked fine, but for the access…
Just Shadow
  • 10,860
  • 6
  • 57
  • 75
10
votes
5 answers

Azure KeyVault - Sign JWT Token

I began using Azure Keyvault to store private keys for my application. I have a use case where I need to sign a JWT token with an RSA private key. When I had the private key in my application memory, it was easy, I would just do that var token =…
user10962730
  • 979
  • 1
  • 7
  • 15
10
votes
2 answers

Azure Function Key Vault reference for certificates?

I'm trying to use Key Vault references in my Azure Function (v1) as described here. It works fine for secrets, but not for certificates. The docs don't mention certs at all, so maybe they are simply not supported? I was hoping to get it as a base64…
Thomas Kappler
  • 3,795
  • 1
  • 22
  • 21
10
votes
3 answers

Using AddAzureKeyVault makes my application 10 seconds slower

I’m having this very simple .NET Core application: static void Main(string[] args) { var builder = new ConfigurationBuilder() .SetBasePath(Directory.GetCurrentDirectory()) .AddJsonFile("appsettings.json",…
PEK
  • 3,688
  • 2
  • 31
  • 49
10
votes
3 answers

Azure key vault - add access policy for deployment slot

I have an app with 2 slots. I have stored connection strings in the key vault. I have enabled MSI on the app and 2 slots. Also, within the vault's access policy, I have added the app (production slot). However I am not able to add the slots to the…
Redzon
  • 431
  • 8
  • 19
10
votes
1 answer

Azure KeyVaultAccessForbidden - "not enabled for deployment"

I'm building a set of scripts and templates to create a Service Fabric cluster in Azure. I've got a script that creates a key vault and a self-signed certificate and successfully uploads it to the vault. Another script creates the cluster but it's…
Jeremy Gooch
  • 939
  • 4
  • 16
  • 28
10
votes
1 answer

Powershell "X509Certificate2Collection" Exception calling "Import" with "3" argument(s): "Cannot find the requested object

I have the below piece of code to download cert from Azure Key Vault. $secretName = "TestCert" $kvSecret = Get-AzureKeyVaultSecret -VaultName $vaultName -Name $certificateName $kvSecretBytes =…
user1335978
  • 193
  • 4
  • 13
9
votes
4 answers

List databricks secret scope and find referred keyvault in azure databricks

How can we find existing secret scopes in databricks workspace. And which keyvault is referred by specific SecretScope in Azure Databricks?
tikiabbas
  • 119
  • 2
  • 3
  • 11
9
votes
2 answers

How can I retrieve the PFX Password of a generated Azure Key Vault certificate?

Azure Key Vault allows you to generate certificates right in the GUI. After, you can download these certificates as a pfx file. Are these pfx files password protected? I am trying to use this certificate somewhere and it won't let me proceed without…
Tiamo Idzenga
  • 1,006
  • 11
  • 23
9
votes
3 answers

How to get keyvault secret output in Azure DevOps

I've got kv with secret dbname = "DatabaseName". In Azure DevOps, I'm using two tasks one for reading secrets from Key Vault and second one is Azure Powershell where is my code line Write-Host $(dbname). Output in logs is ***. And I want to get…
si0two
  • 95
  • 1
  • 4
9
votes
3 answers

Azure DevOps Build Pipeline can't get secrets from Key Vault when secured with vnet and firewall

Can't get secrets from Key Vault when it's secured with vnet and firewall. I would like to use secrets stored in key vault from DevOps Build Pipeline task and I would like to follow security best practice and defense in depth. As security best…
Prodip
  • 436
  • 8
  • 21
9
votes
2 answers

System.TypeLoadException: 'Method 'get_SerializationSettings' when using KeyVault from Load Test Plugin

I have a load test that uses Key Vault to pre-authenticate web requests. As soon as the code tries to call the method that uses KeyVaultClient class inside, the following exception throws: System.TypeLoadException: 'Method…
Dmitry Pro
  • 91
  • 1
  • 4
9
votes
5 answers

Is there a way to restore or promote an older version of a secret?

I know you can restore deleted secrets, however, I want to delete the current version and restore an older version.
user10905091
1 2 3
99 100