Creating an Azure Key Vault

Creating a managed identity

You need access to an Azure subscription with permission to create managed identities. Typically your Visual Studio Free Subscription will suffice.

From the Azure portal, create a managed identity associated with an appropriate resource group.

Calling processes normally use managed identities to access the Azure Key Vault; however, this is not essential. You can also access the Key Vault using shared secrets in scenarios where the caller is not within an environment which has an assigned managed identity. For more information on this scenario, refer to Accessing the Azure Key Vault using REST and oAuth.

Creating a Key Vault

From the portal home screen, search for Key Vault.

Assigning a role

From the IAM option in the Key Vault screen, add a role. For simplicity, we'll use Key Vault Administrator in this example.

Add the managed identity you created earlier.