Upload PFX Cert to Azure Key Vault

When was the last time you tried to upload a certificate to the Azure Key Vault? At the time of writing, you can’t from the portal.

2017-09-17_2031

Good news, you can using PowerShell. Below will guide you how to upload a private key certificate to Azure Key Vault:

### Log into Azure
Add-AzureRmAccount
$Subscription = (Get-AzureRmSubscription | Out-GridView Title "Choose a Source & Target Subscription …" PassThru)
Select-AzureRmSubscription SubscriptionId $Subscription.Id
# Upload Certificate to Azure's Key Vault
$securepfxpwd = ConvertTo-SecureString –String 'password' –AsPlainText –Force # Password for the private key PFX certificate
$certificateName = 'My-Cert'
$vaultName = 'MyVault'
$cer = Import-AzureKeyVaultCertificate VaultName $vaultName Name $certificateName FilePath 'C:\My-Cert.pfx' Password $securepfxpwd

view raw
UploadPFXAzureKeyValut.ps1
hosted with ❤ by GitHub

https://gist.github.com/marckean/03e0cad669e77903fd4f48e756e06a81#file-uploadpfxazurekeyvalut-ps1

https://gist.github.com/marckean/03e0cad669e77903fd4f48e756e06a81#file-uploadpfxazurekeyvalut-ps1

 

Categories: Azure · PowerShell

One Comment

  1. Ian Cornett (@iancornett) Author
    January 20, 2018 at 3:23 pm

    Did you happen to notice if your PFX password still worked when trying to download the secret afterward? It doesn’t. They strip out the value after you upload it. The PFX Import manager will only accept a null value as valid, I lost a couple of nights trying to figure this out.

    Reply

Leave a Reply

Please log in using one of these methods to post your comment:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s