acr icon indicating copy to clipboard operation
acr copied to clipboard
verified publisher icon Azure

Allow ACR to use Customer Managed Key based encryption from Key Vault with private endpoint

Open jmalkiew opened this issue 4 years ago • 4 comments

We'd like to be able to encrypt ACR (accessed via private endpoint) with Customer Managed Key (from Key Vault accessed via private endpoint).

jmalkiew avatar Mar 11 '21 10:03 jmalkiew

Before we implement one of the options, the workaround is to use a temporary public key vault and then key rotate to the target vault: 1. Access via private endpoint through user assigned identity 2. Support encrypt an existing registry

yugangw-msft avatar Mar 11 '21 16:03 yugangw-msft

We also need this use case. I would cast my vote for option 2 above: encrypt existing registry.

sebastus avatar Oct 27 '22 09:10 sebastus

https://learn.microsoft.com/en-us/azure/container-registry/tutorial-customer-managed-keys

leodewang avatar Feb 14 '23 20:02 leodewang

This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 30 days.

github-actions[bot] avatar Dec 21 '23 01:12 github-actions[bot]