Share via

Configure key value in App Service Certificate

Shane Fryer 0 Reputation points
2025-07-09T07:56:44.87+00:00

Hi, I have created a App Service Certificate and create a Key Vault. All parameters seem correct, including regions, etc. Step 2 (Verify) and Step 3 (Assign) have completed successfully but when I try to select a Key Value (I only have 1) the assignment fails with the error in the attached "The parameter keyValueCsmId has an invalid value."

Any guidance on resolving?

User's image

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
8,971 questions
0 comments
Accepted answer
  1. Abiola Akinbade 29,490 Reputation points Volunteer Moderator
    2025-07-09T08:18:22.6233333+00:00

    Try this:

    On the RBAC Key Vault, assign Key Vault Administrator to Microsoft.Azure.CertificateRegistration service principal.

    After that, you can link your Certificate to this Key Vault and see what happens.

    See reference.

    https://learn.microsoft.com/en-us/answers/questions/1514495/failed-to-link-certificate-with-the-selected-key-v

    Let me know how that works

    You can mark it 'Accept Answer' and 'Upvote' if this helped you

    Regards,

    Abiola

    1 person found this answer helpful.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Shane Fryer 0 Reputation points
    2025-07-09T08:32:49.9466667+00:00

    Thanks for help 👍 This has solved the issue for assigning the key value but now I have issues assigning the certificate to my web applications. I assume this is another system permission issue, and this was alluded to in the link you shared. I did however note that one of the users suggested to use "Value access policy" instead of RBAC however, RBAC is stated as the recommended option. Is there any advice on this setup?

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.