Tales from the travelling tech founder
Sit down, it's just you, me and a cup of tea…
In our previous article Azure Resource Manager Templates – Securing your Parameters with KeyVault we have used KeyVault to safely store production secrets. In large teams you may have multiple people deploying resources but don't want to give them access to the actual secrets inside the vault. You can achieve this by creating a custom role that … Continue reading Azure Key Vault – Add Custom Role for Deployment Access Only
You should never keep any confidential configuration information in an application configuration file. This include injecting sensitive information via web transformation files. Adding sensitive values via the AppService settings is not ideal either. In all these cases you may leak sensitive information. For example via your source control. Or anyone with access to your subscription … Continue reading Azure KeyVault – Authenticating with Certificates and Reading Secrets
Certificates have various uses in AppServices. The most obvious one is to enable SSL for your application. Another use it to authenticate towards Azure KeyVault to retrieve confidential values. In this post we will be uploading a certificate to KeyVault. Then we will deploy it to an AppService with Azure Resource Manager. Finally we will … Continue reading Azure Resource Manager Templates – Using Certificates from KeyVault in AppServices
Storing secret information such as parameters in resource template files is not recommended. Often ARM templates are checked into source control. Now everyone has access to your confidential information. Using parameters that are not checked into source control is one option. Azure offers a better option through it's secure data store KeyVault. Think of it … Continue reading Azure Resource Manager Templates – Securing your Parameters with KeyVault
Tales from the travelling tech founder 