Home > Software engineering >  Azure Key Vault - can't get, create, or list secrets
Azure Key Vault - can't get, create, or list secrets

Time:04-21

Cannot create, get, or even list secrets in my key vault. I own the subscription and I have changed to RABC permissions. I have given myself Key vault user, reader, owner, and officer and have waited for 30 minutes to allow perms to propagate. I am missing something and I have googled for a bit for posting here. Any suggestions on which RBACs are needed and how long the perms take to propagate. Thanks

CodePudding user response:

Ooops, I just found out that I have TWO users with the same name and different email addresses. This was the issue -- it takes almost no time for the permissions to propagate. And don't name two users the same name! Sorry...

CodePudding user response:

You need to set RBAC Access Policies: enter image description here

Make sure your network setup is correct:

enter image description here

These are the lists of RBAC available roles. Subscription owner is not enough to read the secrets, you need the KeyVault specific roles (which I think you are already configuring)

link: https://docs.microsoft.com/en-us/azure/key-vault/general/rbac-guide?tabs=azure-cli#azure-built-in-roles-for-key-vault-data-plane-operations

  • Related