Developers are most often facing challenges to store and manage secrets and credentials while building a solution for an organization. Azure Key Vault offers a secure implementation of a secret management solution with a wide range of capabilities to support the development needs. It eliminates the need for developers to handle secret management.

While building web-based solutions, including API, and web applications, it is crucial to secure and manage the environment variables in a central location for ease of use.

In this hands-on lab, you will learn how to secure the application settings on a web app using Key Vault referenced secrets in the Azure Portal.

Learning Objectives

Upon completion of this advanced-level lab, you will be able to:

• Add secrets to Key Vault resource
• Understand managed identities in Azure
• Create application settings using the Key Vault reference

Intended Audience

• Candidates for Azure Security Engineer Associate Exam (AZ-500)
• Cloud Architects
• Security Engineers
• DevOps Engineers
• Software Engineers

Prerequisites

Familiarity with the following will be beneficial but is not required:

• Azure Key Vault
• Azure Web Apps

The following content can be used to fulfill the prerequisite:

• Interacting with Azure Cosmos DB from NextJS Web App using Application Settings
• Azure Key Vault and Disk Encryption

Updates

June 12th, 2024 - Resolved deployment issue

June 3rd, 2024 - Updated the instructions and screenshots to reflect the latest UI

November 7th, 2023 - Resolved an issue that caused the lab to fail periodically

May 26th, 2023 - Resolved an issue that caused the lab to fail periodically

April 3rd, 2023 - Fixed typos in the lab to reflect the correct resource name

October 14th, 2022 - Updated the instructions and screenshots to reflect the latest UI