Migrate Azure Key Vault Certificates to HashiCorp Vault

Hi!

I’m looking to migrate existing self-signed certificates from Azure Key Vault into HashiCorp Vault. What would be the best approach to doing this? I’m able to get the public and private keys from Azure and we’re currently using the Transit secrets engine for generating new keys, but need a way to import existing ones into HashiCorp Vault.

Also, is it possible to read the private key part for encryption keys? Or do we need to handle storing that in a backend ourselves (like Postgres) when creating the key?

Thanks,
Stephen Sun