Good afternoon, I'm trying to assign a system managed identity access to keyvault (using azure native) but for the life of me I can't seem to find how to do this.
I've seen a sample on how to do this using azure classic, but that doesn't appear to work in azure native. Am I just overlooking something?
Thanks for any help 🙂
Thanks for your reply nahlian. Problem with doing this on the keyvault is that I created the keyvault in a different stack.
so one stack creates the keyvault.. the other wants to get access to it
however, now i'm switching to rbac indeed, which seems the way to go
but just to be sure, there's no way right now to add an access policy to an already existing keyvault using pulumi right now?
05/09/2022, 3:54 PM
I use access policies all the time for my app service / function app communication to key vault. I export the managed identity from the service and configure the access policy on the key vault.
In the key vault article I linked, the object ID under access policy is the managed identity ID.