Key Vault
Key Vault was designed as a tool to store keys and secrets, which helps you control access to the vault. It can be used by anyone who has an Azure subscription and have subscription boundaries. Azure Key Vault is also a service that lets you easily provision, manage, and deploy public and private Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with Azure and your internal connected resources.
I work with Key Vault to help with the following:
- Key management: To store my keys like encryption keys for securing my data
- Secret management: To store my tokens, certificates, API Keys, passwords, and other secrets.
There are three ways to authenticate to Key Vault:
- Use managed identities for Azure resources, which is the recommended approach, as the secrets are rotated automatically
- Use a services principle and certificate, which requires the owner to rotate the certificate rather than being automatic like identities for Azure resources
- Use a service principle and...
