Azure AD managed identities for Azure resources.
For more information, see the documentation.
Questions tagged [azure-managed-identity]
795 questions
2
votes
1 answer
How to access Azure Service Bus using Function App identity
I am following the steps listed here, but for python code:
https://learn.microsoft.com/en-us/azure/azure-functions/functions-identity-based-connections-tutorial-2
Objective is to create a simple (hello world) function app which is triggered by Azure…
S2L
- 1,746
- 1
- 16
- 20
2
votes
1 answer
Getting token to access Azure keyvault fails with Operation Cancelled message
We're trying to access a secret from Azure keyvault.
The code tries to get an access token that will then be used to retrieve the secret from the keyvault.
private async Task GetAccessToken(string authority, string resource, string scope)
…
SR Angiras
- 31
- 5
2
votes
0 answers
Possible to impersonate user-assigned managed identity locally for SQL Server connection
I'm investigating using Azure user-assigned managed identities to access SQL Server from our application which uses EntityFramework 6. I have gotten it to work using this package: https://www.nuget.org/packages/ErikEJ.EntityFramework.SqlServer and…
Ian
- 4,169
- 3
- 37
- 62
2
votes
0 answers
Managed Identity read access to Azure Storage Blob & Table with PowerShell
I've been trying to get access to a storage blob (and table in future) with a managed identity in Azure Automation, but unfortunately I can't get it to work.
The Managed Identity has the following permissions on the Blob:
Contributor
Managed…
baswijdenesdotcom
- 185
- 1
- 1
- 12
2
votes
2 answers
What is the best practice for creating Azure SQL with ARM template and Key vault
When we create Azure SQL using ARM templates, we have to specify admin username and password using parameters. In the same ARM template, we can create Key Vaults and use key vault values as variables and use them in the server username and password.…
Avilon
- 121
- 10
2
votes
2 answers
How to use ManagedIdentity in Azure Function storage account connection string
I have an Azure Function that is using durable functions:
local.settings.json
"Values": {
"AzureWebJobsStorage": "UseDevelopmentStorage=true",
"DurableFunctionsStorageConnectionString": "UseDevelopmentStorage=true"
}
host.json
"extensions": {
…
Ilya Chernomordik
- 27,817
- 27
- 121
- 207
2
votes
1 answer
Connect to SharePoint via Graph, Sites.Selected and Managed Identity
I am testing the new "Sites.Selected" Permission in MS Graph and wanted to combine it with managed Identity to connect to SharePoint Online.
I've read on some blogs that the new permission won't work with CSOM so my idea was to create an Azure…
Sohryu
- 73
- 6
2
votes
1 answer
Trying to use Managed Identity with Azure Service Bus
I've tried following this tutorial in order to authenticate my service bus against DefaultAzureCredentials, however, I get a 401.
I'm using the following code in the set-up:
services.AddAzureClients(x =>
{
…
user12585721
2
votes
0 answers
Are Azure Managed Identities enough?
I keep reading about how Azure Managed Identities are the way to go to secure access to Azure resources, and i totally get the convenience and level of security they offer. But i often worry that at the same time they leave open the possibility that…
Shane Fright
- 21
- 1
2
votes
1 answer
How to use managed identity to access key vault on different subscription of same tenant?
Have my Azure VM scale set on subscription1 of tenantA & assigned user managed identity which also belongs to subscription1 of tenantA.
Now I have keyvault on subscription2 of tenantA(same tenant). The keyvault hold secrets which the apps on Azure…
Zackie Khan
- 85
- 7
2
votes
1 answer
Security concerns of using managed identity using AAD Pod Identities
I have been looking into managed identity and AKS cluster and this is my understanding:
I can assign only a single user managed identity to the AKS cluster.
I have to do the relevant role assignments to the identity for getting access.
Now my…
Sibi
- 47,472
- 16
- 95
- 163
2
votes
1 answer
How to create idempotent, re-deployable ARM templates that utilize Key Vault? Circular dependencies present issues
I'm trying to incorporate some additional security features on my resources such as encryption using customer managed keys. For the Service Bus, this requires the Service Bus to have a managed identity created and granted access to the Key Vault.…
siegelc
- 33
- 5
2
votes
1 answer
How the AAD token is refreshed after expiry?
I am working on a SDK where we send telemetry(1000s of events/minute) to Ingestion Service owned by Microsoft.(SDK is used by webapps hosted on Azure VMS or App services) The Ingestion Service currently support authentication using Managed…
kryalama
- 21
- 2
2
votes
2 answers
Accessing Azure Key Vault for local development
I am trying to access Azure Key Vault local by using Service Principle credentials from local for development perspective.
But it seems that Azure SDK is always checking IMDS connectivity ("169.254.169.254")
Code I used to retrieve…
Aman Chhabra
- 3,824
- 1
- 23
- 39
2
votes
1 answer
Determine Username in Azure SQL Server if user is a User assigend managed identity
I connect Azure SQL Server using a user assigned managed identity from a webapp. This works fine so fare, and our logging process shall log all activities of this app (and others) in the database.
To determine the username of the current acting…
Gerd
- 138
- 10