Jack Lichwa

It is correct, AKS outbound public IP has to be set. Trusted service is mostly designed for multi-tenant PAS services running in Microsoft tenant. I don't think you would like...

Not sure what could be an issue with subnet, if there are any limitations or not. You will need to create support request on Key Vault to find the root...

@deuch I don't think that is how it is how it is recommended for managing app service certificate. You should not upload it as secret. Some guidelines here https://docs.microsoft.com/en-us/azure/app-service/configure-ssl-certificate#import-a-certificate-from-key-vault also...

@deuch I'm representing key vault, and this CSI Driver for Key Vault. If AppService does not follow our best practices, that is not our fault. You can create issue on...

> Not that I see anything in particular wrong with this PR, but why? Isn't purge protection - especially on MHSMs - a good thing? Purge protection is part of...

> @heaths @jlichwa When people are unfamiliar with the API and just use example values(maybe just for a try), then they won't be able to purge the resource until the...

@tgillitzer in the document you mentioned, it says: If the tenant IDs for the source and destination subscriptions aren't the same, use the following methods to reconcile the tenant IDs:...

#please-close If there are more questions, please create new item

Hello @KarlErickson I don't understand your request. From discussions I see this: "There's a default retry strategy ExponentialBackoff under azure-core for each HTTP-based client, in which the max retries is...

@moarychan we understand if it is default behavior but it is not how our service behave today. Key Vault throttling is using 10 seconds blocks, so that is why our...