メインコンテンツまでスキップ

FAQs Microsoft Azure KeyVault

User-added image

Frequently Asked Questions for Microsoft Azure Key Vault:

What is Microsoft Azure Key Vault?

What are the requirements for Microsoft Azure Key Vault?

Are Entrust Datacard SSL/TLS certificates compatible with Microsoft Azure Key Vault?

Does Microsoft Azure Key Vault provide PKCS (Public-Key Cryptography Standards) related services?

What is the implication with missing PKCS services on the Key vault and what method to manage keys inside the key vault?

What other steps must be completed to use SSL/TLS certificates inside the key vault ?

What is Microsoft Azure Key Vault?

Microsoft Azure Key Vault is a cloud-hosted management service that allows users to encrypt keys and small secrets by using keys that are protected by hardware security modules (HSMs). https://docs.microsoft.com/en-us/azure/key-vault/key-vault-whatis

What are the requirements for Microsoft Azure Key Vault?

  • You must have an active Microsoft Azure account.
  • You must have selected either the Free or HSM (paid) subscription option.
  • Microsoft Azure PowerShell must be installed. You can download it here .

For a detailed description of subscription and requirements information please visit:

https://docs.microsoft.com/en-us/azure/key-vault/key-vault-get-started

Are Entrust Datacard SSL/TLS certificates compatible with Microsoft Azure Key Vault?

Yes, Entrust SSL certificates are fully compatible with Microsoft Azure Key Vault. The process to import an Entrust Datacard SSL/TLS certificate can be found here .

Does Microsoft Azure Key Vault provide PKCS (Public-Key Cryptography Standards) related services?

No, on this current version of Key Vault, the PKCS services will not be offered and there is no any plan yet by Microsoft to make it available.

What is the implication with missing PKCS services on the Key vault and what method to manage keys inside the key vault?

The document signing function will not be supported on this environment. Microsoft Azure Key vault use REST API for managing the key vault: /articles/en_US/Technote/create-private-key-csr-import-microsoft-azure-hsm

What other steps must be completed to use SSL/TLS certificates inside the key vault ?

Applications that use a key vault must authenticate by using a token from Azure Active Directory. The developer need to register the application with Azure Active Directory and then authorize the application to use the key. The detail information can be found here: https://docs.microsoft.com/en-us/azure/key-vault/key-vault-get-started

For best practices regarding the protection of private keys related to Code Signing certificates, please see our Best Practices article here .

If you have any questions or concerns please contact the Entrust Certificate Services Support department for further assistance:

Hours of Operation:
Sunday 8:00 PM ET to Friday 8:00 PM ET
North America (toll free): 1-866-267-9297
Outside North America: 1-613-270-2680 (or see the list below)
NOTE: It is very important that international callers dial the UITF format exactly as indicated. Do not dial an extra "1" before the "800" or your call will not be accepted as an UITF toll free call.

Number
オーストラリア 0011 - 800-3687-7863
1-800-767-513
オーストリア 00 - 800-3687-7863
ベルギー 00 - 800-3687-7863
デンマーク 00 - 800-3687-7863
フィンランド 990 - 800-3687-7863 (Telecom Finland)
00 - 800-3687-7863 (Finnet)
フランス 00 - 800-3687-7863
ドイツ 00 - 800-3687-7863
香港 001 - 800-3687-7863 (Voice)
002 - 800-3687-7863 (Fax)
アイルランド 00 - 800-3687-7863
イスラエル 014 - 800-3687-7863
イタリア 00 - 800-3687-7863
日本 001 - 800-3687-7863 (KDD)
004 - 800-3687-7863 (ITJ)
0061 - 800-3687-7863 (IDC)
Korea 001 - 800-3687-7863 (Korea Telecom)
002 - 800-3687-7863 (Dacom)
マレーシア 00 - 800-3687-7863
オランダ 00 - 800-3687-7863
ニュージーランド 00 - 800-3687-7863
0800-4413101
ノルウェー 00 - 800-3687-7863
シンガポール 001 - 800-3687-7863
スペイン 00 - 800-3687-7863
スウェーデン 00 - 800-3687-7863 (Telia)
00 - 800-3687-7863 (Tele2)
スイス 00 - 800-3687-7863
台湾 00 - 800-3687-7863
英国 00 - 800-3687-7863
0800 121 6078
+44 (0) 118 953 3088