azure-docs icon indicating copy to clipboard operation
azure-docs copied to clipboard

Published 20 hours ago verified publisher icon MicrosoftDocs

"Download in PFX/PEM format" greyed out

Open mrodriguez-ms opened this issue 2 years ago • 7 comments

Add documentation detailing why "Download in PFX/PEM format" would be greyed out/disabled in the Azure portal for downloading certificates.

Document Details

Do not edit this section. It is required for learn.microsoft.com ➟ GitHub issue linking.

mrodriguez-ms avatar Dec 08 '22 18:12 mrodriguez-ms

@mrodriguez-ms Thanks for your feedback! We will investigate and update as appropriate.

AjayBathini-MSFT avatar Dec 09 '22 03:12 AjayBathini-MSFT

@mrodriguez-ms Could you share details on how you get to know that "Download in PFX/PEM format" would be greyed out/disabled in the Azure portal for downloading certificate.

YashikaTyagii avatar Dec 12 '22 03:12 YashikaTyagii

I had a very similar issue with in one of my Azure Key Vaults. One exhibited the same "defect" and another did not. The difference between the two Key Vaults was the Access Configuration. Key Vault A was configured with access policy. This worked as expected. Key Vault B was configured with Azure role-based access control. The "Download in PFX/PEM format" control was greyed out/disabled in the Azure portal.

Once I configured Key Vault B using Azure role-based access control in the Access Configuration, I was able to download certificates in PFX/PEM format.

For clarity, my user account had both the Contributor/Owner and Key Vault Administrator Role assignment on Key Vault B.

Beep-beep-boop-bop avatar Dec 12 '22 16:12 Beep-beep-boop-bop

@YashikaTyagi-MSFT See this stack overflow post: https://stackoverflow.microsoft.com/questions/335285

You need Secret Permissions -> Secret Management Operations -> Get

I found my answer outside of microsoft documentation, I think it would be good to mention in the docs.

mrodriguez-ms avatar Dec 12 '22 17:12 mrodriguez-ms

@mrodriguez-ms Thanks for the info I am assigning the issue to the content author who will update accordingly.

YashikaTyagii avatar Dec 13 '22 04:12 YashikaTyagii

@msmbaldwin Kindly taka a look at this issue.

YashikaTyagii avatar Dec 13 '22 05:12 YashikaTyagii

Here is some more information, hope this help:

image

mrodriguez-ms avatar Dec 13 '22 17:12 mrodriguez-ms

And with RBAC, which role owns this "Secret Permission"?

jeromerg avatar Jul 21 '23 13:07 jeromerg

Found it: "Key Vault Secrets User"!!!

jeromerg avatar Jul 21 '23 13:07 jeromerg

We sincerely apologize for the delayed response. We are closing this issue for now, but if you feel that it's still a concern, please respond and let us know. If you determine another possible update to our documentation, please don't hesitate to reach out again. #please-close

msmbaldwin avatar Feb 01 '24 20:02 msmbaldwin