Azure Key Vault is centralized secret storage that allows you to control the distribution and access to the secrets. Access to the keys requires proper authentication and authorization before access is granted. Managed Identity provides an application identity to the PaaS or SaaS offering in the Azure that allows you to connect to any Azure service that supports RBAC access through Azure AD.

This lab challenge assumes familiarity with the following concepts:

• Understanding of Azure KeyVault and Azure Web App offering
• Understanding Application Settings on web apps and using KeyVault reference for secrets

This hands-on lab challenge will test your practical ability to interact with the Azure Web Apps to satisfy a set of requirements in a production-like Azure environment. You will be presented with a task and set of requirements you must fulfill to pass the challenge.

This is a real environment, which means you can prove your knowledge in an applied way, substituting multiple choice questions for a dynamic performance-based exam situation.

Updates

November 3rd, 2024 - Resolved an issue that causes the lab to fail to deploy in some cases

• Securing Azure Web App Application Settings using KeyVault Secrets (Lab)
• Interacting with Azure Cosmos DB from NextJS Web App using Application Settings (Lab)

• Candidates for Azure Security Engineer Associate Exam (AZ-500)
• Security Engineers
• DevOps Engineers
• Cloud Architects

• Azure Web Apps
• Azure CosmosDB
• Azure KeyVault