DEV Community

Kenichiro Nakamura
Kenichiro Nakamura

Posted on

3

Read Certificate from Key Vault from Azure App Service by using Managed Identity

We often use Azure Web App and Key Vault together to protect keys/secrets/certificates.

To read certificates from Key Vault by using system assigned managed identity of App Service, there are several things to do.

Enable Managed Identity

From WebApp, enable managed identity.

Image description

Grant Access in KV

From Key Vault access policy, assign certificate get permission (or any other additional required permissions) for the managed id.

WEBSITE_LOAD_USER_PROFILE for Configuration

From WebApp configurations menu, add WEBSITE_LOAD_USER_PROFILE application setting and set value to 1.

Top comments (0)

AWS Security LIVE!

Tune in for AWS Security LIVE!

Join AWS Security LIVE! for expert insights and actionable tips to protect your organization and keep security teams prepared.

Learn More

👋 Kindness is contagious

Dive into an ocean of knowledge with this thought-provoking post, revered deeply within the supportive DEV Community. Developers of all levels are welcome to join and enhance our collective intelligence.

Saying a simple "thank you" can brighten someone's day. Share your gratitude in the comments below!

On DEV, sharing ideas eases our path and fortifies our community connections. Found this helpful? Sending a quick thanks to the author can be profoundly valued.

Okay