问题描述
我想将服务主体添加到 Azure keyvault 访问策略。
我尝试使用以下命令
Set-AzkeyvaultAccesspolicy -VaultName 'kvevalmock' -ObjectId '23erer-ed58-4ead-w34d-1ete23w3yofa' -PermissionsToSecrets @("get","list","set","delete","backup","restore","recover","purge") -PermissionsToKeys @("decrypt","encrypt","unwrapKey","wrapKey","verify","sign","get","update","create","import","purge") -BypassObjectIdValidation
命令被执行,但在密钥库访问策略中,应用程序部分中未列出服务主体。 SP 被添加为未知。 由于这个问题,keyvault secret 创建会抛出禁止访问错误。