Replacing the Certificate for an Azure Key Vault Server

You can replace the certificate for an Azure Key Vault server from the Command Center.

Before You Begin

Obtain a new certificate that establishes trust with the Key Vault. The key length of the certificate should be a minimum of 2,048 bits.

For more information about Key Vault certificates, go to Getting started with Key Vault certificates on the Azure documentation website.

Procedure

1. From the navigation pane, go to Manage > Security.

   The Security page appears.

2. Click the Key management servers tile.

   The Key management servers page appears.

3. Select the Azure Key Vault server, and then click Edit.

   The Edit Azure Key Vault dialog box appears.

4. Complete the following steps:

   • Certificate: Enter the location of the new certificate.

     For example, enter C:\Certificates\client.pfx.

   • Certificate thumbprint: Enter the thumbprint for the certificate.

   • Certificate password: Enter the certificate password.

5. Click Save.

What to Do Next

To verify that the new certificate functions, perform a restore operation or an auxiliary copy operation on a storage policy copy that uses the Key Vault server.