Breadcrumbs

Importing on Linux

Use the Azure CLI to import the wrapped key to your Azure key vault, generated in the previous steps.

  1. Execute the following command to import an RSA tenant key:

›_ Console

# az keyvault key import --vault-name <keyvault> --name <WrappedKeyName> -- byok-file "wrappedkey>"
tmp3ydh87o1.png

Importing tenant key

tmptwi8an8h.jpg

List importing tenant key

Execute the following command to import an EC tenant key:

›_ Console

# az keyvault key import --vault-name <keyvault> --name <WrappedKeyName> -- byok-file "wrappedkey>" --kty EC --curve <curvename>

For <curvename> Azure supports P-256, P-384 and P-521. The curve name must match the actual key.

tmp6ylk73g2.jpg

List importing tenant key

tmpwz3qzqjq.jpg

List importing tenant key

  1. Use the following command to check, if the key has been successfully imported to the Azure Key vault:

›_ Console

# az keyvault key show --vault-name <keyvault> --name <WrappedKeyName>

You can also check if the key is visible on your Azure portal.

For RSA Key

tmpymcuw09k.jpg

List RSA key

For ECC Key

tmpg0hwr5hc.png

List ECC key