DEVHIDE
Login Or Sign up

How to use managed identity to access key vault on different subscription of same tenant?

868 Views Asked by At

Have my Azure VM scale set on subscription1 of tenantA & assigned user managed identity which also belongs to subscription1 of tenantA.

Now I have keyvault on subscription2 of tenantA(same tenant). The keyvault hold secrets which the apps on Azure VM scale set on subscription1 needs to access.

It is possible to add managed identity Azure VM scale set on subscription1 to the access policy of the keyvault on subscription2 of same tenant as per the below answer.

Is it possible to add managed identity Azure VM scale set on subscription1 to the access policy of the keyvault on subscription2 of different directory/tenant?

azure azure-active-directory azure-keyvault azure-managed-identity azure-security
Original Q&A
1

There are 1 best solutions below

3
On BEST ANSWER

Yes. A Managed Identity creates a service principal in the Azure AD tenant of its subscription. That service principal can be granted access to anything within that Azure AD tenant, including all subscriptions linked to it.

Related Questions in AZURE

Related Questions in AZURE-ACTIVE-DIRECTORY

Related Questions in AZURE-KEYVAULT

Related Questions in AZURE-MANAGED-IDENTITY

Related Questions in AZURE-SECURITY

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Popular Questions

Copyright © 2021 Jogjafile Inc.