Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,411 questions
1 answer
permissions in the key vault access
i am getting an error in the production environment as: { "status": 401, "message": "Operation failed because client does not have permission to perform the operation on the key vault. Please check your permissions in…
asked 2025-04-14T17:47:41.8533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 60%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHV%3C/text%3E%3C/svg%3E)
Hariharan Viswanath
20
Reputation points
commented 2025-04-17T18:17:49.5766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 68%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKS%3C/text%3E%3C/svg%3E)
Kancharla Saiteja
2,920
Reputation points Microsoft External Staff
0 answers
Resolve issues with code signing using AzureSignTool
Hi, I recently setup a code signing certificate in Azure Key Vault. I am using the HSM. I setup the roll based Access control for the key vault while creating it. Then, I created an application in my azure tenant and provided all the required access…
asked 2025-04-10T01:36:27.84+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER6%3C/text%3E%3C/svg%3E)
RaghuveerBoinapalli-6584
0
Reputation points
commented 2025-04-17T13:58:16.5933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 27%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERP%3C/text%3E%3C/svg%3E)
Raja Pothuraju
20,570
Reputation points Microsoft External Staff
1 answer
Azure Key Vault Managed HSMs still charging
Hi, I have created Azure Key Vault Managed HSMs just for testing/curiosity. After couple of days i have delete it and purge it from the portal. I can still see that the monthly bill is increasing hour by hour. What can i do to stop it ? Is it going to…
asked 2025-04-08T17:27:14.45+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 85%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
rku
0
Reputation points
commented 2025-04-16T19:42:14.4933333+00:00
Raja Pothuraju
20,570
Reputation points Microsoft External Staff
1 answer
Azure key vault to manage certificates
Hello, I am having an Azure key-vault store and a CA trust root certificate provided by the trust authority - Sectigo. Now, I want to upload this certificate in my key-vault store. However, it says 'Private key is not specified in the specified X.509 PEM…
asked 2021-03-16T18:18:21.643+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 63%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESY%3C/text%3E%3C/svg%3E)
Sushil Yadav
1
Reputation point
edited a comment 2025-04-16T10:21:02.7333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 13%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERO%3C/text%3E%3C/svg%3E)
Raghav, Omkar S
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Private SSH key in Azure key vault
I have a private ssh key stored in azure virtual machines which are highlighted by defender for cloud and I want to resolve that recommandation. So as per suggested by MS the remediation will be to store the private ssh key in azure key vault and give…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 38%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPD%3C/text%3E%3C/svg%3E)
2 answers
Azure key vault secrets addition
Hello, We are trying to add secrets to our keyvault in the production environment. We are facing this error: The error message says: The connection to data plane failed. Please refresh and try again. If Private Links are enabled on the vault and the…
asked 2025-04-03T20:13:52.6466667+00:00
Hariharan Viswanath
20
Reputation points
commented 2025-04-07T20:33:45.94+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 82%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVD%3C/text%3E%3C/svg%3E)
Vigneshwar Duvva
240
Reputation points Microsoft External Staff
1 answer
One of the answers was accepted by the question author.
Help storing a HSM protected code signing certificate in Azure Key Vault
If you use a code signing certificate then you are likely aware of the more recent stringent requirement for private key storage. I was looking at how to store this in Azure Key Vault. To achieve this, I needed to upgrade to Azure Key Vault Premium…
asked 2025-04-01T22:33:05.1733333+00:00
Mark Bewley
51
Reputation points
commented 2025-04-07T20:33:30.8233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Navya
17,490
Reputation points Microsoft External Staff
2 answers
One of the answers was accepted by the question author.
I deleted an HSM in KeyVault but I'm still paying for it
I wanted to create an 'Azure Key Vault', but have instead created an 'Azure Key Vault Managed HSM Pool' instead - which seems to be rather expensive. Is there a way that you can delete the HSM Pool before the Purge Period? I have configured the purge…
asked 2025-04-02T14:28:37.0433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 36%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETM%3C/text%3E%3C/svg%3E)
Timon Michel
20
Reputation points
accepted 2025-04-04T08:45:43.3166667+00:00
Timon Michel
20
Reputation points
2 answers
One of the answers was accepted by the question author.
Application Gateway - Unable to use certificate from Vault
Hello, I'm really stuck trying to get my App Gateway to use a certificate from Vault. When I import (upload) the pfx file directly into the GW its fine, but the exact same file uploaded to Vault never works. On the 'Listener TLS certificates' it is…
asked 2025-03-26T14:38:10.86+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 41%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPG%3C/text%3E%3C/svg%3E)
Paul Green
20
Reputation points
accepted 2025-04-03T21:11:20.77+00:00
Paul Green
20
Reputation points
1 answer
One of the answers was accepted by the question author.
Unable to download Certificate of Authority from a key vault as a .pfx file
I am attempting to set up certificate based authentication on Microsoft 365. I created a key vault and a certificate but am unable to download the certificate as a .pfx file. It is giving me an error message that reads 'failed to dynamically fetch target…
asked 2025-03-20T16:55:41.2133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 78%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGG%3C/text%3E%3C/svg%3E)
Gilbert Gomez
20
Reputation points
accepted 2025-04-02T22:23:34.3233333+00:00
Gilbert Gomez
20
Reputation points
1 answer
Error when Importing Certificate
Hello, Hope you guys are doing great, I'm currently trying to update a certificate in our keyvaults, I have the certificate in PFX format and it's password protected. Although the keyvault it's stating that an error occurred while importing the…
asked 2025-03-26T17:55:15.6666667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 93%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGA%3C/text%3E%3C/svg%3E)
Gonçalo Camacho
0
Reputation points
commented 2025-04-02T04:03:33.1+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 77%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
Rukmini
1,166
Reputation points Microsoft External Staff
1 answer
One of the answers was accepted by the question author.
Certificate upload to key vault fails with a service principal account
I am logged in as a service principal. This has owner, Key vaults secrets user, Key vault certificate user IAM roles assigned to it. Following the documentation I am trying to upload a certificate.…
asked 2025-03-24T10:12:50.0633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 14.000000000000002%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYM%3C/text%3E%3C/svg%3E)
Yashas Manjunath
96
Reputation points
accepted 2025-04-01T21:04:47.6433333+00:00
Yashas Manjunath
96
Reputation points
1 answer
One of the answers was accepted by the question author.
Certificate addition/binding to an App service from a key vault fails
I have a key vault with IAM setup. It has a lets's encrypt certificate on it. I also have a app service with a custom domain. I want to bind this certificate from the key vault to this app service. I go to bring your own certificate and then key vault…
asked 2025-03-25T12:49:12.6033333+00:00
Yashas Manjunath
96
Reputation points
accepted 2025-04-01T21:04:13.6833333+00:00
Yashas Manjunath
96
Reputation points
1 answer
One of the answers was accepted by the question author.
Need soft deleted Managed HSM purged ASAP
We made two Managed HSM key vaults with purge protection and they are billing us $$$ that will be in the thousands before the retention period is over. We need these hard deleted ASAP.
asked 2025-03-10T11:13:52.57+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 71%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMH%3C/text%3E%3C/svg%3E)
Maury Hill
50
Reputation points
commented 2025-04-01T19:40:22.9066667+00:00
Raja Pothuraju
20,570
Reputation points Microsoft External Staff
2 answers
One of the answers was accepted by the question author.
Unable to add secret to brand new key vault
I get an error message when I try to create a new Secret for a newly created key vault. Message: "The operation is not allowed by RBAC. If role assignments were recently changed, please wait several minutes for role assignments to become…
asked 2025-03-31T19:57:40.15+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 80%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEE%3C/text%3E%3C/svg%3E)
Eric Ellingsen (Lab Acct)
20
Reputation points
commented 2025-03-31T21:10:59.2033333+00:00
Eric Ellingsen (Lab Acct)
20
Reputation points
3 answers
One of the answers was accepted by the question author.
I don't have the permission to view the contents in my own azure key vault
Today, I created azure key vault. However I don't have the permission to see the contents of keys and secrets created by me. I have assigned myself "owner" role. Still no luck. MaY I know why I am getting forbidden from access my own resources…
asked 2023-11-11T15:35:37.2633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 75%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Sangram Mohanty
56
Reputation points
commented 2025-03-31T11:05:08.8433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 75%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMW%3C/text%3E%3C/svg%3E)
Mr Wick
0
Reputation points
1 answer
cann't create resource
{"message":"Failed to fetch","stack":"TypeError: Failed to fetch\n at https://portal.azure.com/Content/Dynamic/ol-FYaiW0gv0.js:166:25388\n at https://portal.azure.com/Content/Dynamic/ol-FYaiW0gv0.js:166:25609\n at lt…
asked 2025-03-31T06:50:05.1733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 9%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZ%3C/text%3E%3C/svg%3E)
zeasnadmin
0
Reputation points
answered 2025-03-31T07:51:00.4133333+00:00
Luis Arias
8,356
Reputation points
2 answers
Access KeyVault from AzureFunciton with public network disabled
I have an azure function that needs to access key-vault. The code looks like this: credentials = DefaultAzureCredential() secret = secret_client.get_secret(secret_name) Locally, It works with the following settings: KeyVault -> Settings ->…
asked 2023-04-19T09:41:41.1266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 72%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
previousversiondocs
56
Reputation points
commented 2025-03-27T04:40:30.2533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 84%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Sudharsan S
0
Reputation points
3 answers
One of the answers was accepted by the question author.
What are Azure Key Vault's soft-delete and purge protection features?
Please explain how Azure Key Vault's soft-delete and purge protection features work. How can I recover vaults that have been soft-deleted? Why do I need to enable soft-delete in order to use purge protection? Note: As we migrate from MSDN, this…
asked 2020-05-06T21:00:49.01+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Marilee Turscak-MSFT
37,181
Reputation points Microsoft Employee
commented 2025-03-26T02:34:03.3+00:00
84017655
66
Reputation points
1 answer
One of the answers was accepted by the question author.
What's the best way to configure Key Vault networking to allow Power Automate endpoints?
Trying to allow network access to my key vault from Power Automate Flows. I found this really long list of IP addresses I could add, but this does not seem like a very manageable solution. Is it possible to use service tags, instead…
asked 2025-03-18T19:14:38.3366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(230.39999999999998, 4%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Channing Maddix
20
Reputation points Microsoft Employee
edited a comment 2025-03-25T19:49:51.24+00:00
Channing Maddix
20
Reputation points Microsoft Employee