I have set up a Key Store with 'Azure role-based access control' and added a secret for SQL Server authentication.
I have created a Purview account, and registered the database
I have granted the 'Key Vault Reader' role to the Purview account in the Key Vault Access Control (IAM) which indicates it can 'Read metadata of key vaults and its certificates, keys, and secrets.'
I've set up the Key Vault connection if Purview Studio and added SQL Authentication credentials
However when I set up the scan with the SQL Authentication credentials I get the error:
Error: (20500) Failed to access the provided secret in Azure key vault. Please grant Purview MSI permissions to get secrets on your key vault. If the error still persists, please make sure the secret actually exists in the key vault.
The secret does exist in the Key Vault.
Have I granted enough to the Purview account or am I missing something?