AzureConfigEncryption

JSON representation

Configuration related to config data encryption.

Azure VM bootstrap secret is envelope encrypted with the provided key vault key.

JSON representation
{ "keyId" : string , "publicKey" : string }

Fields

Fields
`keyId`	`string` Required. The ARM ID of the Azure Key Vault key to encrypt / decrypt config data. For example: `/subscriptions/<subscription-id>/resourceGroups/<resource-group-id>/providers/Microsoft.KeyVault/vaults/<key-vault-id>/keys/<key-name>`
`publicKey`	`string` Optional. RSA key of the Azure Key Vault public key to use for encrypting the data. This key must be formatted as a PEM-encoded SubjectPublicKeyInfo (RFC 5280) in ASN.1 DER form. The string must be comprised of a single PEM block of type "PUBLIC KEY".

keyId

string

Required. The ARM ID of the Azure Key Vault key to encrypt / decrypt config data.

For example: /subscriptions/<subscription-id>/resourceGroups/<resource-group-id>/providers/Microsoft.KeyVault/vaults/<key-vault-id>/keys/<key-name>

publicKey

string

Optional. RSA key of the Azure Key Vault public key to use for encrypting the data.

This key must be formatted as a PEM-encoded SubjectPublicKeyInfo (RFC 5280) in ASN.1 DER form. The string must be comprised of a single PEM block of type "PUBLIC KEY".

Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License , and code samples are licensed under the Apache 2.0 License . For details, see the Google Developers Site Policies . Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2025-06-17 UTC.

Design a Mobile Site

View Site in Mobile | Classic

Share by:

AzureConfigEncryption Stay organized with collections Save and categorize content based on your preferences.

AzureConfigEncryption