sparse-intern-71089
10/24/2022, 9:07 AMripe-russia-4239
10/24/2022, 9:32 AMKey Vault Crypto Officer
and Key Vault Secrets Officer
are Azure Active Directory roles, not built-in Key Vault roles. You will need to:
1. Set enableRbacAuthorization
to true on the Key Value Properties (see here)
2. Add your user account/service principal/managed identity to the two Key Vault roles using authorization.RoleAssignment. Note the RoleAssignmentName
property is a GUID/UUID, not the human-readable name. You can get the values for this property from the Azure docs.
3. Remove the access policy defintion from the key vaultadventurous-mechanic-24805
10/24/2022, 11:39 AMripe-russia-4239
10/24/2022, 12:50 PM