When accessing the Keys tab in Azure Key vault, you may get an error that says:
![](/signserver-cloud/files/105355/105359/1/1700063775928/image2019-5-28_13-30-55.png)
To get around this, perform the following steps to configure Azure Key Vault firewalls to allow access to your key vault.
- Browse to the Key Vault that SignServer is using, in this example SignServerKeyVault, and select Networking.
![](/signserver-cloud/files/105355/105357/1/1700063775653/image2020-4-27_13-13-22.png)
- Add your public IP into the Firewall section on the Firewalls and virtual networks tab. To allow a single IP, end the IP with /32. Otherwise, add your appropriate subnet.
![](/signserver-cloud/files/105355/105358/1/1700063775818/image2020-4-27_13-11-48.png)
- Click Save.
- You will now be able to access all of the keys on the Keys tab of the Azure Key Vault.
![](/signserver-cloud/files/105355/105356/1/1700063775512/image2020-4-28_8-54-58.png)
Next, continue with creating a test key that SignServer can use to activate the Crypto Token, see Creating First Key for SignServer.