Skip to end of banner
Go to start of banner

Create a key vault for the Exchange Online Microservice

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Current »

The Exchange Online microservice requires a key vault with a certificate for certificate-based authentication between the microservice and the service principal registered for it.

Create the key vault and certificate

  1. In Azure, create a Key vault if you do not already have one or want to create a new one.

  2. Navigate to the Certificate page for the key vault and click Generate/Import.

  3. Enter a Certificate Name and Subject and then click Create.

     

  4. After Azure creates the certificate, click the record for it and then download the certificate in CER format. You will add this to the service principal you created for the Exchange Online app service.

     

Add an access policy

  1. Navigate to the Access policies blade for the key vault.

  2. Click + Add Access Policy.

  3. Click the Certificate permissions drop-down and select Get.

  4. Under Select principal, click None Selected.

  5. Search for and select the Managed Identity for the Exchange Online App Service. Please note that the Managed Identity you select is the System Assigned Managed Identity you enabled for the app service.

  6. Click Select to select the principal.

  7. On the Add access policy blade, click Add.

Upload the certificate to the service principal

  1. Navigate to the Certificates & Secrets blade for the service principal you created for Exchange Online.

  2. Upload the certificate you downloaded from the key vault.


Next Steps

Provision a Cosmos DB Account for Exchange Online

Add application settings to the app service

Publish the Exchange Online Microservice

  • No labels