Azure Key Vault - 无法找到/选择 Front Door 作为访问策略的原则
[英]Azure Key Vault - unable to find/select Front Door as Principle for access policy
问题描述
I'm following this tutorial to use a custom SSL certificate in Front Door from Key Vault...
我正在按照本教程在 Key Vault 的 Front Door 中使用自定义 SSL 证书...
https://learn.microsoft.com/en-us/azure/frontdoor/front-door-custom-domain-https https://learn.microsoft.com/en-us/azure/frontdoor/front-door-custom-domain-https
... it states that " In Select principal, search for ad0e1c7e-6d38-4ba4-9efd-0bc77ba9f037, and select Microsoft.Azure.Frontdoor " ...它指出“在 Select 主体中,搜索 ad0e1c7e-6d38-4ba4-9efd-0bc77ba9f037 和 select Microsoft.Azure.Frontdoor ”
However, when adding the access policy neither that GUID or "FrontDoor" is in the list ...但是,在添加访问策略时,GUID 或“FrontDoor”都不在列表中......
Any ideas on how to fix this?有想法该怎么解决这个吗? I need to give Front Door an ssl certificate for an apex domain我需要为 Front Door 提供顶级域的 ssl 证书
1 个解决方案
解决方案1
1 已采纳 2022-12-06 14:30:09
I tried to reproduce the same issue in my environment and got the below results我试图在我的环境中重现同样的问题并得到以下结果
To add the custom domain and name we need the keyvault
For that I have created the keyvault while creating I have followed the below steps为此,我在创建时创建了密钥库,我已按照以下步骤操作
Azure front door import custom certified only from the keyvault Azure 前门进口定制认证仅来自 keyvault
First I have registered the azure front door service principal using the below script首先,我使用以下脚本注册了 azure 前门服务主体
New-AzADServicePrincipal -ApplicationId “XXXXXXXXXXX”
Go-TO Portal → search for Keyvault → create new keyvault In the first page give the name & region click on next to go to the access policy to new policy Go-TO Portal →搜索Keyvault →创建新的keyvault在第一页给出名称和区域点击 go 旁边的访问策略到新策略
In the certificate permissions select get, in the secret get & list & authorities
When I click on principal I am able to see azure front door in the list as shown
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.