Passwords are like underwear – Keep them hidden using Azure MSI

We keep the credentials and other secrets of  the application in the source files. These secrets are visible to developers and being pushed to the source control. In order to avoid this, we can keep the secrets in centralized key management systems - but the credentials of the centralized key management system should be kept in the source files, resulting that at least one credential being placed in the source files. Let's see how to overcome this using Azure Managed Service Identity

Azure Key Vault Logging

This post goes with the series of my posts under the Azure Key Vault. I assume that you know about Azure Key Vault and have used it, and continue this article. If you're new to Azure Key Vault, please review the below links. You can read more about Azure Key Vault and how to use … Continue reading Azure Key Vault Logging

Azure Key Vault Manager

Azure Key Vault is generally available. If you use Azure Key Vault in your projects, then there's a high probability that you felt the need of a handy dev tool to manage your Vault. Here it is. http://keyvaultmanager.azurewebsites.net GitHub: https://github.com/thuru/AzureKeyVaultManager More about Azure Key Vault: https://thuruinhttp.wordpress.com/2015/05/30/azure-key-vault-setup-and-usage-scenarios/

Azure Key Vault setup and usage scenarios

Introduction At the time of this writing Azure Key Vault is in preview.  Azure Key Vault is a secure store solution for storing string based confidential information. The reason I’ve mentioned that the string based confidential information is that you can store a key used for encrypting a file, but you cannot store the encrypted … Continue reading Azure Key Vault setup and usage scenarios