Azure-docs: [Error] - Keyvault policy recoverable is not set

@murdockcrc Thanks for the question. We are looking into it and will update you soon.

@murdockcrc To run them as written, the best option is to use Bash in CloudShell and let me know the status

I believe I ran this under shell.azure.com, in Bash (not PowerShell). Is that what you are referring to?

@murdockcrc I was able to reproduce the issue and Configure encryption with customer-managed keys

az storage account update --name su*diag --resource-group Storage-Resources --assign-identity

az keyvault set-policy --name n*123 --resource-group storage-resources --object-id $storage_account_principal --key-permissions get recover unwrapkey wrapkey

az keyvault key create --name submtestkey --vault-name

key_vault_uri=$(az keyvault show --name ne*123 --resource-group storage-resources --query properties.vaultUri --output tsv)

key_version=$(az keyvault key list-versions --name suby --vault-name new3 --query [].kid --output tsv | cut -d '/' -f 6)

az storage account update --name su*diag --resource-group storage-resources --encryption-key-name subkey --encryption-key-version $key_version --encryption-key-source Microsoft.Keyvault --encryption-key-vault $key_vault_uri

Try to generate the Key and check if the issue still persists I'd recommend posting your question in https://social.msdn.microsoft.com/forums/azure/en-US/home?forum=windowsazuredata since it's not directly related to the documentation. We'll follow up there. We will now proceed to close this thread. If there are further questions regarding this matter, please tag me in your reply. We will gladly continue the discussion and we will reopen the issue.