question

RafaSzybowskiJMMJ-3318 avatar image
0 Votes"
RafaSzybowskiJMMJ-3318 asked JamesTran-MSFT commented

App Service Certificatate - Store in Key Vault Issue

Hi,
I created new App Service Certificate becouse old one auto-renowal was not confirmed. I wanted to configurate it and make it active to use for my App Service.

In the Certificate Configuration there are 3 steps. I have stuck on the first one. Step 1: Store. Import certificate into Keyvault for secure administration.

When i try to use my old key vault (where i stored the old certificate) or use new created for this purpose key vault i recive error:
![122817-image.png][1]

Operation name
Update Key Vault
Time stamp
Thu Aug 12 2021 17:25:25 GMT+0200 (czas środkowoeuropejski letni)
Event initiated by
xxxx
Error code
BadRequest
Message
Invalid value found at accessPolicies[1].ObjectId:

I have set up Access Policies correctly


Service Principals:
Microsoft Azure App Service: Secret Permissions=Get; Certificates=Get
Microsoft.Azure.CertificateRegistration: Secret Permissions=Get, List, Set, Delete; Certificates=Get, List

Does anyone have similar issue?

azure-key-vault
· 3
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@RafaSzybowskiJMMJ-3318
Thank you for your post!

Based off the error message that you received Invalid value found at accessPolicies[1].ObjectId, I was able to find a Stack Overflow post that might be related to your issue. However, in order to give me a better understanding of your issue, can you share any documentation that you're following, API calls that you're making (keeping in mind PII), or screenshots.



If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.

0 Votes 0 ·

@JamesTran-MSFT
Thank you for your reply. Actually i found the solution here: https://docs.microsoft.com/en-us/answers/questions/400060/34failed-to-update-permissions-on-selected-key-vau.html

I had the same problem and solution was having the global administrator role. It is weird but it worked for me. I think the topic can be closed as solved or merged with the other somehow :)

0 Votes 0 ·
JamesTran-MSFT avatar image JamesTran-MSFT RafaSzybowskiJMMJ-3318 ·

@RafaSzybowskiJMMJ-3318
Thank you for the follow up on this and I'm glad that you were able to resolve your issue!

0 Votes 0 ·

0 Answers