DEV Community

Santhosh Thomas
Santhosh Thomas

Posted on

How To Store Certificate (.pem) in Azure Keyvault using Secrets and fetch values from secrets into pem file using python

#azure #python #keyvault #certificate

Convert .pem Certificate file into base64 using certutil 

certutil -encode filename.cer newfilename.cer
Enter fullscreen mode Exit fullscreen mode

  1. Go to azure portal

  2. Select ketvault service

  3. Create a new keyvault

  4. Select secrets from setting on sidepanel

  5. Create a new secret

  6. Copy paste base 64 into secret value and save it

### Python code to fetch certificate value from keyvault and store into a pem file

from azure.identity import DefaultAzureCredential
from azure.keyvault.secrets import SecretClient
credentials = DefaultAzureCredential()
secret_client = SecretClient(vault_url=key_vault_url, credential=credentials)
cert_value =  secret_client.get_secret("Certificate").value

with open('certificate.pem','w') as fopen:
        fopen.write(base64.b64decode(cert_value).decode())
Enter fullscreen mode Exit fullscreen mode

Top comments (0)