Azure key vault is a cloud service used to store application secrets in a centralized cloud location in order to securely control access permissions and access loggings. these secrets are application credentials like passwords,Client application secrets,Connection strings,Access keys (Redis Cache, Azure Event Hubs, Azure Cosmos DB),SSH keys.
Key Vault service supports two types of containers: vaults and managed hardware security module(HSM) pools. Vaults support storing software and HSM-backed keys, secrets, and certificates. Managed HSM pools only support HSM-backed keys.
STEPS TO DEPLOY KEY VAULT ON AZURE
STEP 1
Login your Microsoft Azure account
STEP 2
Search for "key vault"
STEP 3
click on create
STEP 4
Fill in the boxes. Choose your subscription.
-Create/choose a resource group[mine was the marchworkload].
-Type in a unique keyvault name
-Choose a region of your choice and the pricing tier.
-Soft delete: This feature allows you to recover or permanently delete a key vault and secrets for the duration of the retention period. It is automatically enabled in a key vault.
-Days to retain deleted vaults: helps you choose between 7-90 days to recover your vault if it gets deleted by chance.
-Purge protection: It enforces mandatory retention period and prevents the permanent deleting of key vaults prior to the retention period elapsing.
Click on 'Review and create'
STEP 5
Click on Create
STEP 6
Go to Resource
STEP 7
Key vault now active
STEP 8
To create Keys
Search for 'Keys' and click on it
STEP 9
Choose a unique name
-Set an activation and expiration date
-You can choose to add a tag or not
Click on 'Create'
STEP 10
Key is created
STEP 11
To create Secrets in Key Vault,
Search for 'Secrets' and click on it,
Then click on 'Generate/Import'
STEP 12
-Choose a unique name
-Set an activation and expiration date
-You can choose to add a tag or not
Click on 'Create'
STEP 13
Secret has been created
STEP 14
To create Certificates in Key Vault,
Search for 'Certificates' and click on it,
Then click on 'Generate/Import'
STEP 15
-Method of Certificate Creation: Generate
-Create a unique name
-Subject - CN here stands for Common Name. Use any name of your choice but it must follow the required format. I used 'CN=Afolabicertificate.com'
-Fill the remaining boxes accordingly
Click on 'Create'
STEP 16
violla!!! Certificate has been created
Top comments (0)