Merge pull request #186856 from shisriva-msft/shisriva-certificate-updates

PRMerger19 · web-flow · commit 47fbbc34c33f · 2022-02-01T07:17:56.000+05:30
Added key vault vm windows update regarding ACLing feature missing
diff --git a/articles/virtual-machines/extensions/key-vault-windows.md b/articles/virtual-machines/extensions/key-vault-windows.md
@@ -27,6 +27,10 @@ The Key Vault VM extension supports below versions of Windows:
 
 The Key Vault VM extension is also supported on custom local VM that is uploaded and converted into a specialized image for use in Azure using Windows Server 2019 core install.
 
+> [!NOTE]
+> The Key Vault VM extension downloads all the certificates in the windows certificate store or the to the location provided by “certificateStoreLocation” property in the VM extension settings. Currently, the KV VM extension grants access to the private key of the certificate only to the local system admin account. Additionally, it is currently not possible to define certificate store location per certificate. The VM extension team is working on a solution to close this feature gap.
+
+
 ### Supported certificate content types
 
 - PKCS #12
