Reputation: 365
Azure Key Vault with App Service connection error
I'm trying to set up a new app slot for my azure website.
Here is my error:
I've looked at a few articles online and then made sure the app slot was using System assigned identities.
But I still get the above error?
What am I missing?
Here is what it looks like on the Configuration section
Upvotes: 0
Views: 981
Answers (1)
Reputation: 42133
Make sure you have done the steps below, then it should work.
1.After enabling the system-assigned identity(MSI) of your slot, navigate to your keyvault in the portal -> Access policies -> add the MSI of your slot to the access policy with the correct secret permission, just search for your web app name, the MSI of the slot has the format as webappname/slots/slotname, details here.
2.If you use the SecretUri, the format of the connection string in your slot should be like below, double-check it.
@Microsoft.KeyVault(SecretUri=https://joykeyvault123.vault.azure.net/secrets/encryptionKey/492c7788a9da421c8b9752ef18b53f5d)
You could get the SecretUri in your secret in the portal.
It works fine on my side.
Upvotes: 2
Related Questions
- Key Vault reference in Azure App Service doesn't resolve
- AKV10032: Invalid issuer error when connecting to Azure Key Vault from App Service
- Not able to get Azure Key-Vault working in app when deployed to Azure
- Authentication to Azure Key Vault from an app service fails
- Web App Azure Portal - Key Vault Reference shows not connected
- Unable to import key vault certificate to app service - Failed to get App Service Service principal details
- “Key vault access denied” in azure web app configuration setting
- Azure Key Vault not allow access via private endpoint connection
- Unable to connect to Azure Key Vault from Azure Web App
- Not able to connect to Azure Key Vault when using Service Identity