az keyvault network-rule
Manage network ACLs for vault or managed hsm.
Commands
| Name | Description | Type | Status |
|---|---|---|---|
| az keyvault network-rule add |
Add a network rule to the network ACLs for a Key Vault or a Managed HSM. |
Core | GA |
| az keyvault network-rule list |
List the network rules from the network ACLs for a Key Vault or a Managed HSM. |
Core | GA |
| az keyvault network-rule remove |
Remove a network rule from the network ACLs for a Key Vault or a Managed HSM. |
Core | GA |
| az keyvault network-rule wait |
Place the CLI in a waiting state until a condition of the vault or managed hsm is met. |
Core | GA |
az keyvault network-rule add
Add a network rule to the network ACLs for a Key Vault or a Managed HSM.
az keyvault network-rule add [--hsm-name]
[--ip-address]
[--name]
[--no-wait]
[--resource-group]
[--subnet]
[--vnet-name]Examples
Add a specific IP address to the network access rules of a Key Vault in a specified resource group using this command. (autogenerated)
az keyvault network-rule add --ip-address 1.2.3.4 --name cli-mock-kv-nr --resource-group cli_mock_keyvault_network_ruleOptional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Name of the HSM. (--hsm-name and --name/-n are mutually exclusive, please specify just one of them).
IPv4 address or CIDR range. Can supply a list: --ip-address ip1 [ip2]...
Name of the Vault.
Do not wait for the long-running operation to finish.
| Property | Value |
|---|---|
| Default value: | False |
Name of resource group.
Name or ID of subnet. If name is supplied, --vnet-name must be supplied.
Name of a virtual network.
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az keyvault network-rule list
List the network rules from the network ACLs for a Key Vault or a Managed HSM.
az keyvault network-rule list [--hsm-name]
[--name]
[--resource-group]Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Name of the HSM. (--hsm-name and --name/-n are mutually exclusive, please specify just one of them).
Name of the Vault.
Name of resource group.
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az keyvault network-rule remove
Remove a network rule from the network ACLs for a Key Vault or a Managed HSM.
az keyvault network-rule remove [--hsm-name]
[--ip-address]
[--name]
[--no-wait]
[--resource-group]
[--subnet]
[--vnet-name]Examples
Remove a specific IP address to the network access rules of a Key Vault in a specified resource group.
az keyvault network-rule remove --ip-address 1.2.3.4 --name cli-mock-kv-nr --resource-group cli_mock_keyvault_network_ruleOptional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Name of the HSM. (--hsm-name and --name/-n are mutually exclusive, please specify just one of them).
IPv4 address or CIDR range. Can supply a list: --ip-address ip1 [ip2]...
Name of the Vault.
Do not wait for the long-running operation to finish.
| Property | Value |
|---|---|
| Default value: | False |
Name of resource group.
Name or ID of subnet. If name is supplied, --vnet-name must be supplied.
Name of a virtual network.
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az keyvault network-rule wait
Place the CLI in a waiting state until a condition of the vault or managed hsm is met.
az keyvault network-rule wait [--created]
[--custom]
[--deleted]
[--exists]
[--hsm-name]
[--interval]
[--name]
[--resource-group]
[--timeout]
[--updated]Examples
Pause CLI until the network ACLs are updated.
az keyvault network-rule wait --name MyVault --updatedOptional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Wait until created with 'provisioningState' at 'Succeeded'.
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
| Default value: | False |
Wait until the condition satisfies a custom JMESPath query. E.g. provisioningState!='InProgress', instanceView.statuses[?code=='PowerState/running'].
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
Wait until deleted.
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
| Default value: | False |
Wait until the resource exists.
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
| Default value: | False |
Name of the HSM. (--hsm-name and --name/-n are mutually exclusive, please specify just one of them).
Polling interval in seconds.
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
| Default value: | 30 |
Name of the Vault.
Name of resource group.
Maximum wait in seconds.
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
| Default value: | 3600 |
Wait until updated with provisioningState at 'Succeeded'.
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
| Default value: | False |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
