I am unable to Choose secrets from linked keyvault to be included in this Azure DevOps variable group..select Option is grey out

gsrao
December 14, 2023
268 views
0 votes
2 Answers

I am unable to Choose secrets from linked keyvault to be included to the Azure Devops variable group

I have service connection with has subscription level access SPN and I have a keyvault and grant keyvault secret officer role to SPN.
Issue: when i try to map the keyvault secret to Azure DevOps variable group , I can able to see all the secret from keyvualt but unable to select the secrets . the option is grey out.

I have recently change Permission model to “Azure role-based access control” instead of “Vault access policy”. will it cause this ?
Please help me here.

Answers

Chosen as BEST ANSWER
- gsrao
- December 14, 2023 at 6:24 pm
- 0 votes
0
Thanks for your support, I got the root cause, My azure keyvualt screts are expired recently because of that select option is disable in devops libarary , once i have update expire date , i am able to select the secrets

(Edit)

- MiaoTianMSFT
- December 14, 2023 at 3:43 am
- 0 votes
0
Yes, it is caused by the Permission model “Azure role-based access control”.

According to Link secrets from an Azure key vault, it notes that

Key Vaults using Azure role-based access control (Azure RBAC) are not supported.

If you want to use it in the Azure DevOps variable group, please don’t use the “Azure role-based access control”.

Login or Signup to reply.

Please signup or login to give your own answer.

Click here to cancel reply.