Breadcrumbs

Importing on Windows

Use the Azure CLI to import the wrapped key to your Azure key vault, generated in the previous steps.

  1. Execute the following command to import an RSA tenant key:

›_ Console

> az keyvault key import --vault-name <keyvault> --name <WrappedKeyName> -- byok-file "wrappedkey>"
tmpbplj30ix.jpg

Importing tenant key

tmpshhpujxy.jpg

List importing tenant key

Execute the following command to import an EC tenant key:

›_ Console

> az keyvault key import --vault-name <keyvault> --name <WrappedKeyName> -- byok-file "wrappedkey>" --kty EC --curve <curvename>

For <curvename> Azure supports P-256, P-384 and P-521. The curve name must match the actual key.

tmpogdpn00a.jpg

Importing tenant key

tmpnb2beszz.jpg

List importing tenant key

  1. Use the following command to check, if the key has been successfully imported to the Azure Key vault:

›_ Console

> az keyvault key show --vault-name <keyvault> --name <WrappedKeyName>

You can also check if the key is visible on your Azure portal.

For RSA Key

tmpf_gdfose.jpg

List RSA key

For ECC Key

tmp5jjcsro4.jpg

List ECC key