SACRED/docs/destinationTypes/AzureKeyVault.md at main · ccdigix/SACRED

Azure Key Vault

When a rotation job occurs it produces a map containing useful information that can be assigned to various destinations, including Azure Key Vault.

Secrets

The following JSON job definition snippet updates one or more secrets within an Azure Key Vault:

{
    "...": ...,
    "rotationSchedule": "...",
    "update": {
        "keyVaults": [
            {
                "keyVaultName": "NAME OF THE KEY VAULT",
                "secretMappings":  {
                    "NAME OF THE KEY VAULT SECRET TO STORE THE INFO IN": "KEY NAME OF THE ROTATION OUTPUT TO STORE",
                    "NAME OF ANOTHER KEY VAULT SECRET TO STORE THE INFO IN": "ANOTHER KEY NAME OF THE ROTATION OUTPUT TO STORE",
                    ...
                }
            }
        ]
    }
}

Certificates

The following JSON job definition snippet updates one or more certificates within an Azure Key Vault:

{
    "...": ...,
    "rotationSchedule": "...",
    "update": {
        "keyVaults": [
            {
                "keyVaultName": "NAME OF THE KEY VAULT",
                "certificateMappings":  [
                    {
                        "NAME OF THE KEY VAULT CERTIFICATE TO STORE IN": "KEY NAME OF THE CERTIFICATE DATA WITHIN THE ROTATION OUTPUT THAT WE WANT TO STORE",
                        "password": "OPTIONAL KEY NAME OF THE CERTIFICATE PASSWORD WITHIN THE ROTATION OUTPUT"
                    },
                    ...
                ]
            }
        ]
    }
}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Azure Key Vault

Secrets

Certificates

FilesExpand file tree

AzureKeyVault.md

Latest commit

History

AzureKeyVault.md

File metadata and controls

Azure Key Vault

Secrets

Certificates