wkaczurba

Key vault

https://learn.microsoft.com/en-ie/training/modules/implement-azure-key-vault/2-key-vault-overview

Secure storing of secrets + keys:

Monitor access and use

Simplified administration of apps secret

https://learn.microsoft.com/en-ie/training/modules/implement-azure-key-vault/3-key-vault-concepts

Authentication:

Encryption of data in transit (TLS/)

Azure Key Vault best practices: what are those? why ?

https://learn.microsoft.com/en-ie/training/modules/implement-azure-key-vault/4-key-vault-authentication

From gist:

#!/bin/bash

set -e

KEYVAULT_NAME=keyvault-$RANDOM
LOCATION=westeurope
RG_NAME=keyvault-example-$RANDOM-rg

SECRET_NAME="ExamplePassword"

function create_keyvault {
    echo "Creating resource group:"
    az group create --name $RG_NAME --location $LOCATION

    echo "Creating keyvault; name=$KEYVAULT_NAME, resource-group: $RG_NAME, location: $LOCATION"
    az keyvault create --name $KEYVAULT_NAME --resource-group $RG_NAME --location $LOCATION
}

function create_secret {
    echo "Creating a secret"
    az keyvault secret set --vault-name $KEYVAULT_NAME --name "${SECRET_NAME}" --value 'Pa$$word123R'
}

function retrieve_password {
    echo "Retrieving a secret"
    az keyvault secret show --vault-name $KEYVAULT_NAME --name "${SECRET_NAME}"
}

function delete_all {
    echo "Deleting group"
    az group delete --name $RG_NAME --no-wait
}

create_keyvault
create_secret
retrieve_password
delete_all

More resources: