I’m currently facing the following error when configuring Key Vault parameters:
“Unable to find the digital certificate.”
The issue occurs during the setup, even though the certificate is already created and configured in Key Vault.
I’ve been following the Microsoft documentation, but it seems to be outdated and doesn’t fully match the current behavior, which makes troubleshooting more difficult.
Has anyone experienced this error before or gone through a similar scenario? Any insights or guidance would be greatly appreciated.
Thanks in advance!
Hi @IsaWurth
I’ve run into this one before; it’s frustrating, but usually fixable.
A few things worth checking:
-
Where did you store the cert in Key Vault? D365 only reads it if it’s stored as a Secret (not under the Certificates or Keys tab). You’ll need to upload the .pfx via PowerShell using Set-AzKeyVaultSecret with content type application/x-pkcs12.
-
Double-check the vault:// URI - even a small typo throws this exact error. Format should be: vault://YourVaultName/YourSecretName
-
App Registration permissions - make sure the App Registration you’ve linked in D365 has Get & List access on Secrets in the Key Vault Access Policy. Easy one to miss!
-
Is the cert expired? Sounds obvious, but D365’s validator won’t always catch it, worth a quick check on the Azure portal.
Step 1 catches most people. Hope you get it sorted!