Comments (3)
Will the issued certificate that is downloaded from Key Vault and use within azure be automatically renewed 30 days before their expiration?
Yes. However, it's not exactly 30 days ago, but rather the day of the week when the Timer runs, so it's a little back and forth. Specifically, it runs on Mondays, Wednesdays and Fridays.
In addition, can i check if one subscription user assigned managed identity can assess another subscription key vault certificate? I having issue setup HTTPS within the Application Gateway without downloading and uploading certificate. I cannot find the key vault.
To use a Key Vault certificate on Application Gateway, you must create a User-assigned Managed Identity, configure a Key Vault access policy and enable the Key Vault soft-delete feature.
https://docs.microsoft.com/en-us/azure/application-gateway/configure-keyvault-ps
from keyvault-acmebot.
Hi Shibayan,
I tried this before to create a user assigned Managed identity, but it do not seems to be able to read the key vault stored in another subscription even through i configured a key value access policy. If everything is in the same resource group, the managed identity can access it. Do you happen to know why?
"To use a Key Vault certificate on Application Gateway, you must create a User-assigned Managed Identity, configure a Key Vault access policy and enable the Key Vault soft-delete feature."
from keyvault-acmebot.
This is not related to Key Vault Acmebot, so it's closed. I recommend that you contact Azure support.
from keyvault-acmebot.
Related Issues (20)
- Setting to set DNS resolver HOT 3
- Dashboard, add version number to title HOT 1
- GoDaddyProvider.ListZonesAsync only gets the first 100 DNS zones HOT 1
- Cannot Create Certificates for Selected Azure DNS Zone HOT 3
- Error is certificate issuance if certificate with less number of DNS names is attempted for re-issuance HOT 2
- This does not support Azure Private Dns Zone, I suppose ? HOT 1
- Support for deploying to Container Apps HOT 1
- Support for Standalone mode
- Add support for multiple keyvaults HOT 3
- Support for HTTP challenge type using Azure Storage Account HOT 1
- Failed automatic certificate renew HOT 1
- Group certificates by domain HOT 1
- Add support of several accouts for GoDaddy provider HOT 3
- Date annotation is american, not local HOT 2
- Unable to connect to a 3rd party provider that supports ACME HOT 36
- Unable to host in Linux HOT 1
- Support for new hosting options HOT 3
- Migrate to .NET 8 Isolated Worker Process HOT 2
- Consumption (Linux)
- keyUsage nonRepudiation HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from keyvault-acmebot.