Accessing Azure Storage through keys managed by Azure Key Vault via Powershell
I am having trouble accessing my storage account keys in a managed key vault. Here is my code:
$secret = Get-AzKeyVaultManagedStorageAccount -VaultName $keyVaultName -Name $storageAccountName
$ctx =New-AzStorageContext -StorageAccountName $storageAccountName -StorageAccountKey $secret.SecretValueText
It seems that $secret.SecretValueText is empty/null. How do I retrieve the storage account key correctly? This is the error that appears.
New-AzStorageContext : Cannot validate argument on parameter 'StorageAccountKey'. The argument is null or empty. Provide an argument that is not null or empty, and then try the command again.
Definitely it will be empty, the output of Get-AzKeyVaultManagedStorageAccount is PSKeyVaultManagedStorageAccount, it does not have such a property, the SecretValueText is a property of PSKeyVaultSecret.
And I don't think you can get the storage account key via Get-AzKeyVaultManagedStorageAccount, if you want to get the storage account key, you can use the command below, make sure your logged user account/service principal has the RBAC role e.g. Storage Account Key Operator Service Role, Contributor, Owner in your storage account.
$key = (Get-AzStorageAccountKey -ResourceGroupName <group-name> -Name <storageaccount-name>).Value[0]
New-AzStorageContext -StorageAccountName <storageaccount-name> -StorageAccountKey $key
- Invalid operands found for operator -eq
- Detect when user cancels $host.ui.promptforchoice prompt
- How can I make sure Powershell will correctly render all non-latin characters into the output?
- How can I choose between $MyInvocation.ScriptName and $MyInvocation.PSCommandPath in PowerShell?
- Azure pipeline template: dynamically retrieve and story keyvault secrets
- Maintaining property order with get-member
- PowerShell - Return an array of all possible properties for an ADObject
- List objects vs. Arrays in PowerShell
- Using start-process in a loop, where some programs will have arguments and some don't; Way to not have if $Arguments -ne $null
- Run Invoke-Command in remote computer as administrator
- Authenticate to Azure with certificate from Linux
- How to recursively append to file name in powershell?
- Mapped network drives are not showing in My Computer
- Delete files in a folder except a list of extensions I specify
- How to open 'This PC' using CMD or Powershell?
- transfer the files from sub folder and sub folders recursively without specifying the folder name
- Im creating a VM using terraform code in GCP. I would like to inject a script that runs when the vm is created upon startup
- Remove-ItemProperty does not seem to work with -LiteralPath
- How can I elevate Powershell while keeping the current working directory AND maintain all parameters passed to the script?
- How do I remove or replace a built in alias in powershell?
- Remove-AdObject with Import-CSV error
- What is ScopedItemOptions?
- Use additional arguments to start-process Powershell -verb runas
- PowerShell and M2MQTT
- Invoke-Command Robocopy
- npm install doesn't work in Windows PowerShell
- Use CTRL + D to exit and CTRL + L to cls in Powershell console
- Run a [Code] or PowerShell script in Inno Setup compiler
- Calculating SHA1 hash algorithm in PowerShell V2.0
- Use wildcard characters with Neo4j admin