stackoom
  简体   繁体   中英

Azure Key Vault ClientSecret Management

 原文  2022-04-07 18:41:49       c#/ console-application/ azure-keyvault/ app-secret

Question

For me, I have distributable console app to users. Instead of hard-coding the connection strings in the application, I moved those to Key Vault and created the ClientCredentials.

Interactive-user-login or certificate in AAD are not in my options as I do not have admin privileges to consent the API permissions at this moment.

Question, might look like duplicate, where do I keep the key (ClientCreds) to the lock (KeyVault)? Obviously lock 'n' key in place does not do any good.

Note that, even if I hardcode in the console app, it can be reversed by any decompiler. Please assist here.

1 answers

solution1
 1  2022-04-07 18:58:52

You've asked the impossible question, but I believe you've made a mistake. AKV access policies require a token but do not need consent to APIs. You can do interactive login without API consent to get an access token for Key Vault.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Azure alerts for key vault certificates TLS version used in Azure key vault Near Expiry Event Trigger for Azure Key Vault Should the Azure Key Vault URL be hidden? Snowflake connection string provided by Azure Key Vault How to use Azure Key Vault in android Azure Retrieve Secret from key vault Problems with setting a Key In Key Vault with Azure through Terraform Access azure key vault from azure blob storage (static website) How to get the secrets from Azure Key Vault Using Azure SQL?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM