Managing Secrets
In this tutorial, we will understand about managing keys and secrets.
Next, after creating a key vault, use the procedure below to create and manage keys and secrets within the vault:
Creating a key
- Firstly, sign in to the Azure Stack Hub user portal https://portal.local.azurestack.external.
- Secondly, from the dashboard, select All resources. Then, select the key vault that you created earlier, and then select the Keys tile.
- Thirdly, in the Keys pane, select Generate/Import.
- After that, in the Create a key pane, from the list of Options, select the method that you want to use for creating a key. Here, you can Generate a new key, Upload an existing key, or use Restore Backup to select a backup of a key.
- Then, enter a Name for your key. However, the key name can contain only alphanumeric characters and the hyphen (-) character.
- Next, optionally you have access to configure the Set activation date and Set expiration date values for your key.
- Lastly, select Create to start the deployment.
After creating the key, you can select it under Keys and view or modify its properties. However, the properties section contains the Key Identifier, which is a Uniform Resource Identifier (URI) that external apps use to access this key. For limiting operations on this key, configure the settings under Permitted operations.
Creating a secret
- Firstly, sign in to the user portal https://portal.local.azurestack.external.
- Secondly, from the dashboard, select All resources. Then, select the key vault that you created earlier, and then select the Secrets tile.
- Thirdly, under Secrets, select Add.
- After that, under Create a secret, from the list of Upload options and select an option with which you want to create a secret. However, you can create a secret Manually if you enter a value for the secret, or upload a Certificate from your local machine.
- Next, enter a Name for the secret. Here, the secret name can contain only alphanumeric characters and the hyphen (-) character.
- Further, you can optionally specify the Content type, and configure values for Set activation date and Set expiration date for the secret.
- Lastly, select Create to start the deployment.
After creating the secret, you can select it under Secrets and view or modify its properties. Here, the Secret Identifier is a URI that external apps can use to access this secret.
Reference: Microsoft Documentation
Prepare for Assured Success
Want to pass Microsoft Azure Security Technologies (AZ-500) Exam? Learn MoreAre you preparing for Microsoft Azure Security Technologies (AZ-500) Exam?Take a Quiz