Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Azure Key Vault creation fails when enable soft delete is set to false
See original GitHub issueDescribe the bug
Azure Key Vault creation using az keyvault gives an error when soft delete is disabled and does not create the key vault.
To Reproduce
Running the following command
az keyvault create --resource-group myrg --name mykv \
--location westeurope --sku standard --enable-soft-delete false
returns
The property "enableSoftDelete" must be set to true.
Expected Behavior
Should create the key vault with soft delete disabled.
Environment summary
OS Name: Microsoft Windows 10 Pro OS Version: 10.0.17763 N/A Build 17763
az --version
azure-cli 2.5.0
command-modules-nspkg 2.0.3
core 2.5.0
nspkg 3.0.4
telemetry 1.0.4
Same error also in Cloud Shell environment.
$ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 16.04.6 LTS
Release: 16.04
Codename: xenial
$ az --version
azure-cli 2.4.0 *
command-modules-nspkg 2.0.3
core 2.4.0 *
nspkg 3.0.4
telemetry 1.0.4
Extensions:
application-insights 0.1.6
resource-graph 1.0.0
azure-devops 0.18.0
Additional Context
The reason seems to be the property softDeleteRetentionInDays in the JSON payload the az keyvault command sends to the REST API.
{
"location": "westeurope",
"properties": {
"tenantId": "<removed>",
"sku": {
"family": "A",
"name": "standard"
},
"accessPolicies": [],
"enableSoftDelete": false,
"softDeleteRetentionInDays": 90
// rest of the properties removed
}
}
Everything seems to work correctly if the key vault creation is invoked directly using the az rest command and without the property softDeleteRetentionInDays in the JSON payload.
{
"location": "westeurope",
"properties": {
"tenantId": "<removed>",
"sku": {
"family": "A",
"name": "standard"
},
"accessPolicies": [],
"enableSoftDelete": false,
"enableRbacAuthorization": false
}
}
az rest \
--method PUT \
--uri "https://management.azure.com/subscriptions/<removed>/resourceGroups/my-resource-group/providers/Microsoft.KeyVault/vaults/my-keyvault?api-version=2019-09-01"
--header Content-Type=application/json \
--body <the json playload above>
Issue Analytics
- State:
- Created 3 years ago
- Reactions:11
- Comments:28 (2 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
It should work now. I just tested in this region.
@bim-msft How to workaround this issue? I am working with
westeuropemainly. Change region for current my deployment is not an option for me.