Azure Key Vault
Link to Azure Key Vault to deliver new certificates you enroll in DigiCert® Trust Lifecycle Manager to your external vaults.
Before you begin
You need an active DigiCert sensor to establish and manage the connection to your Azure Key Vault account. To learn more, see Deploy and manage sensors.
Make sure the sensor is running the latest software version and is installed somewhere that can connect to the Azure Key Vault service.
Link to your Azure Key Vault account
From the Trust Lifecycle Manager main menu, select Integrations > Connectors.
Select the Add connector button.
In the Vaults section, select the tile for Azure Key Vault.
Fill in the form:
Name: Assign a friendly name to this connector.
Business unit: Select a business unit for this connector. Only users assigned to this business unit can manage the connector.
Managing sensor: Select an active DigiCert sensor to use to manage this connector.
Azure tenant ID: Enter the tenant ID for your Azure Active Directory (AD) instance.
Subscription ID: Enter the Azure subscription ID containing the key vaults you want to deliver to. If your Azure tenant only has a single subscription, this field is optional. It is mandatory if your Azure tenant maps to multiple subscriptions.
Azure client ID: Enter a valid client ID for accessing the Azure Key Vault service.
Azure client secret: Enter the client secret for the Azure client ID you entered.
Select Add to complete the link to Azure Key Vault.
重要
Each Azure connector corresponds to a single Azure subscription. To deliver certificates to key vaults under multiple subscriptions, you must add multiple connectors, one for each subscription ID.
What's next
Go to the Integrations > Connectors page to view, check status, or manage your Azure Key Vault connectors.
See Request new certificates with vault delivery to learn how to enroll and deliver certificates to your connected key vaults.