Kamsiinov
Reputation: 1490
Azure ARM template add deployer object id to key vault access policies
I have a service principal which I am using to deploy key vault. How can I fetch that service principals object id automatically with ARM template similarly as I can fetch MSI object id with line:
"objectId": "[reference(concat('Microsoft.Web/sites/', variables('function')), '2018-02-01', 'Full').identity.principalId]",
Upvotes: 1
Views: 779
Answers (1)
4c74356b41
Reputation: 72151
I dont think you can. Your only option would be to pass it from the level above (ie from the powershell script that is invoking the template). Also, if you want to do that just to read data from the Key Vault in the template - you don't need that. Advanced Access Policies do that instead.
Upvotes: 2
Related Questions
- Adding a Key Vault Access Policy to an Existing Key Vault via ARM
- How to override the key vault reference parameters in ARM Template using "ARM Template Deployment" task in Azure DevOps
- ARM template dependsOn on a keyvault access policy
- azure arm template deploying azure key vault extension to a VM
- How to dynamically create Azure KeyVault reference in ARM template?
- Azure Key Vault access from ARM Template
- ARM template Key vault access policy to group instead of identity principle
- Azure ARM template - check for existing Key Vault access policies
- Deploy azure key vault secret using arm template gives error
- "The resource identifier of the KeyVault parameter '' is invalid" error during ARM template deployment