question

AndriyBilous avatar image
0 Votes"
AndriyBilous asked singhh-msft commented

Does Azure KeyVault support X509 certificates rekey option

I have generated a self-signed RSA certificate in Azure KeyVault and enabled auto-renew feature.

When self-signed certificate is renewed automatically, public/private key pair is not rotated.

Is it possible to auto-renew self-signed certificate n Azure KeyVault using rekey option same as in Azure AppService Certificates?

138871-image.png


azure-key-vault
image.png (40.9 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

singhh-msft avatar image
0 Votes"
singhh-msft answered singhh-msft commented

@AndriyBilous , thank you for reaching out to us. As you have set auto renewal of self-signed certificate, you are seeing that the public/private key pair is not rotated by default.

You can rotate it by updating the policy for your certificate in the key vault, where you can set ReuseKeyOnRenewal to false.

Let me know if you have any follow-up questions.


Please "Accept the answer" and upvote if the information helped you. This will help us and others in the community as well.



· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@AndriyBilous , do share valuable feedback of your experience with us!

0 Votes 0 ·