DEV Community

Santhosh Thomas
Santhosh Thomas

Posted on

5 3

How To Store Certificate (.pem) in Azure Keyvault using Secrets and fetch values from secrets into pem file using python

Convert .pem Certificate file into base64 using certutil

certutil -encode filename.cer newfilename.cer
Enter fullscreen mode Exit fullscreen mode
  1. Go to azure portal

  2. Select ketvault service

  3. Create a new keyvault

  4. Select secrets from setting on sidepanel

  5. Create a new secret

  6. Copy paste base 64 into secret value and save it

### Python code to fetch certificate value from keyvault and store into a pem file

from azure.identity import DefaultAzureCredential
from azure.keyvault.secrets import SecretClient
credentials = DefaultAzureCredential()
secret_client = SecretClient(vault_url=key_vault_url, credential=credentials)
cert_value =  secret_client.get_secret("Certificate").value

with open('certificate.pem','w') as fopen:
        fopen.write(base64.b64decode(cert_value).decode())
Enter fullscreen mode Exit fullscreen mode

Top comments (0)

AWS Security LIVE!

Tune in for AWS Security LIVE!

Join AWS Security LIVE! for expert insights and actionable tips to protect your organization and keep security teams prepared.

Learn More

👋 Kindness is contagious

Immerse yourself in a wealth of knowledge with this piece, supported by the inclusive DEV Community—every developer, no matter where they are in their journey, is invited to contribute to our collective wisdom.

A simple “thank you” goes a long way—express your gratitude below in the comments!

Gathering insights enriches our journey on DEV and fortifies our community ties. Did you find this article valuable? Taking a moment to thank the author can have a significant impact.

Okay