DEV Community

Kenichiro Nakamura
Kenichiro Nakamura

Posted on

Read Certificate from Key Vault from Azure App Service by using Managed Identity

We often use Azure Web App and Key Vault together to protect keys/secrets/certificates.

To read certificates from Key Vault by using system assigned managed identity of App Service, there are several things to do.

Enable Managed Identity

From WebApp, enable managed identity.

Image description

Grant Access in KV

From Key Vault access policy, assign certificate get permission (or any other additional required permissions) for the managed id.


From WebApp configurations menu, add WEBSITE_LOAD_USER_PROFILE application setting and set value to 1.

Top comments (0)