Restrict access to Azure KeyVault using Fluent

Question

I need to restrict access to the Key Vault at the time it is created. I am creating through the Fluent sdk, where I can create the KeyVault and define Tags and Resource Group.

Note: with powershell I can perform the operation using the command: Add-AzKeyVaultNetworkRule but using Fluent I cannot

here how i create the KeyVault:

        var azureClient = await GetAzureClientWithSubscription();

        var rVault = await azureClient.Vaults
            .Define(kvName)
            .WithRegion(Region.BrazilSouth)
            .WithExistingResourceGroup(kvRG)
            .DefineAccessPolicy()
            .ForObjectId(_settings.ObjectId)
            .AllowSecretPermissions(SecretPermissions.Get)
            .AllowSecretPermissions(SecretPermissions.List)
            .AllowSecretPermissions(SecretPermissions.Set)
            .Attach()
            .WithTags(tags)
            .CreateAsync();

score 1 · Accepted Answer · answered May 05 '21 at 01:50

1

This is a known issue that has been reported to the SDK team, you can see the issue here. though it is not so elegant, you can call this REST API to set networkAcls after the key vault is created.

Or just create a key vault by key vault ARM template by fluent SDK.

Let me know if you have any more questions.

answered May 05 '21 at 01:50

Stanley Gong

11,522
1
8
16

Thank you a lot, your tips gave me a north, as the process is already creating the resource correctly, I will go by the REST API to do it. – Gustavo Nogueira May 05 '21 at 14:14
@GustavoNogueira,glad to know it is helpful :) – Stanley Gong May 05 '21 at 15:25

Restrict access to Azure KeyVault using Fluent

1 Answers1