⬡ Hub
Skip to content

Azure Key Vault

Azure Key Vault is a cloud service for securely storing and accessing secrets.

Key Features

  • Secret Management: Securely store tokens, passwords, certificates, API keys.
  • Key Management: Create and control encryption keys used to encrypt your data.
  • Certificate Management: Provision, manage, and deploy public and private SSL/TLS certificates.

Use Cases

  • App Secrets: Remove secrets from application code and config files.
  • Encryption: Manage keys for disk encryption or SQL TDE.
  • Certificates: Automate certificate renewal.

Key Concepts

  • Vault: The logical container for keys, secrets, and certificates.
  • Access Policies: Rules that determine who can access the vault and what they can do.
  • HSM: Hardware Security Module (Premium tier) for FIPS 140-2 Level 2 compliance.