The Fortanix solution for Azure Key Vault (AKV) offers complete Cloud Native Key Management Service (CNKMS), and Bring Your Own Key (BYOK), with complete lifecycle management for automation of Azure keys and allows users to manage all keys centrally and securely.
For detailed steps to configure an Azure Key Vault group in Fortanix DSM for BYOK operations, refer to Fortanix DSM with Azure Key Vault user guides.
Fortanix DSM’s BYOK feature generates Linked or Copied virtual keys from a source key enabling backup and key replication to other CSP accounts/subscriptions, regional instances, key repositories, and, most importantly, to multiple cloud providers, including private clouds. This includes seamless movement between private clouds (on-premises) and public clouds. BYOK keys also allow tracking of key activities across multiple CSP repositories for easier restoration if keys are deleted or disabled.