How to recover keyvault
A simple way to recover an Azure Key Vault and its secrets after accidental deletion.
A simple way to recover an Azure Key Vault if needed.
If a Key Vault was soft-deleted, you can recover it along with all its secrets using the Azure CLI. First, ensure the resource group exists (or recreate it), then recover the vault, list deleted secrets, and recover each one individually.
1
2
3
4
5
6
7
8
9
10
11
az group create --location westeurope --resource-group "erste-compliance-dev-rg"
az keyvault recover -n "erste-compliance-dev-kv" -g "erste-compliance-dev-rg"
az keyvault secret list-deleted --vault-name "erste-compliance-dev-kv" | grep name > /tmp/secrets
cat /tmp/secrets | while read secret; do az keyvault secret recover --vault-name "erste-compliance-dev-kv" --name "$secret"; done
cat /tmp/secrets
azureClientId
azureClientSecret
azureTenantId
endpointSuffix
storageAccountResourceTableName
This post is licensed under CC BY 4.0 by the author.