My pleasure! This one is my first video here in this channel. You should also check the more recent video on this www.rahulpnath.com/blog/connect-net-core-to-azure-key-vault-in-ten-minutes/
thank you Sharfan Shahabdeen. glad that you liked it. Do check out my blog articles if you are getting started www.rahulpnath.com/blog/category/azure-key-vault/
Thanks Gaurav and glad you liked it. Also checkout out how you can use it from .NET Core here th-cam.com/video/6l_kpygO0Ic/w-d-xo.html if that is something of interest
Thanks for the tutorial. Could you please share an approach to access the key vault from a google cloud application? Any options to do that? I have my app running from google cloud run or inside a virtual machine in google cloud but needs to use the application secrets stored in AZ key-vault. (rather than using Google secrets - enterprise strategy). I would appreciate if you can share some pointers.
Are you looking for videos around Azure Key Vault? If so check out my Key Vault Playlist here - th-cam.com/play/PL59L9XrzUa-nEwFPxQRu8jV94uM00pN0i.html Let know if that helps!
Pramod Lawate Thanks for the comment again. It really motivated me to go and publish the follow up video on using Certificate based authentication. Had been procrastinating on it for a while and your comment was a booster! th-cam.com/video/JbshGF4ZwGE/w-d-xo.html
Thanks for the comment - yes sure it did. The overall concept of key vault and how it gets used has not changed much though. Anything in particular that you were referring to? Happy to do an updated video.
@@Nobo_On_The_Rocks Thanks for your feedback. Like I said since the basic key vault workflow is the same I guess it still is relevant. I have a newer video on using Connected Service as well in the channel if that helps. th-cam.com/video/S7EPrlpPqXw/w-d-xo.html Thanks again for your comments 👍
Authenticating with Key Vault is using AD application token. You can use Managed Identity to avoid having to manage the AD app and secrets/certificates explicitly. You can read more about it and the associated video here www.rahulpnath.com/blog/connect-net-core-to-azure-key-vault-in-ten-minutes/ Let know if you have additioal questions.
@@RahulNath Thanks. Basically i wanted to use key Vault with SSIS to store connection string or sensitive information. I will try this and let you know.
Thanks for the great video. I am facing one issue: I am getting access denied error while executing the function GetSecretAsync(). I have given the full permission to the application in My vault.
Access denied certainly looks like a permission issue. Can you double check that you have set the correct permissions for the AD application.? Can you try creating a new key vault and see if the problem exists there as well?
You need the secret to connect to the key Vault and if the secret to connect to vault is in another key Vault then you run into the 'chicken and egg problem'. Recommended is using certificate or if your application is hosted on Azure use MSI. rahulpnath.com/blog/authenticating-with-azure-key-vault-using-managed-service-identity/ Let know if that helps.
@@RahulNath I need to store a secure token and reuse the same token to call an API also need to refresh the token after two hours. What is the best option?
Great video... Now i have knowledge about this Azure KeyVault feature. But one question : In case of different environment (Dev/Stage/Prod), we will switch the config file. SO how can we perform this switch in Azure KeyVault?
Glad that you liked the video and thanks for leaving a comment. For handling different environment can you check my blog post on the same and let know if it helps. rahulpnath.com/blog/azure-key-vault-in-a-real-world-application Let know in case you have any further questions.
Secrets are more commonly used in App dev, probably that is a reason? Overall concepts are the same. What specifically of the keys are you looking for?
Thank you - This is the latest video and blog post on .net core www.rahulpnath.com/blog/connect-net-core-to-azure-key-vault-in-ten-minutes/ Also do check out the popular ASP Series here if you haven't already bit.ly/asp-net-core-series Do reach out if you have specific questions.
I had written about using key vault from Java a while back. You can find the article here www.rahulpnath.com/blog/using-azure-key-vault-from-a-java-application/ Let me know if that helps and if you have any specific questions. I don't primarily work on java, so might not be of much help, but can try :)
There are limitations on the characters allowed in the name. Below is from the documentation . (docs.microsoft.com/en-us/azure/key-vault/general/about-keys-secrets-certificates#objects-identifiers-and-versioning?WT.mc_id=AZ-MVP-5003875 ) _An object-name is a user provided name for and must be unique within a Key Vault. The name must be a 1-127 character string, starting with a letter and containing only 0-9, a-z, A-Z, and -._
Hello Rahul, Very good post. I have tried on my local and am able to access the key vault via the visual studio 17. However, when i am publishing the app to the azure, I get "forbidden" errors. Can you please let me know what configuration is required on Azure end with respect to your application.
Sandeep Wagh Glad it helps. What authentication mechanism are you using ? When is the forbidden error occurring , is it at runtime or when trying to deploy?
@@RahulNath Hi Rahul..this is at runtime. I would like to know what steps you perform when you publish the same application to Azure. There might be some settings in the "ApplicationSettings" of my MVC we app i have published to Azure. Please note that the application works perfectly fine on my local with your set of steps.
@@Dr.Smitaphysio24 Sorry for the delayed reply. Were you able to resolve this issue? What authentication mechanism are you using? Are you using the same auth credentials in local and azure? Will be great if you can detail out the steps you are doing
@@RahulNath Hello Rahul...Sorry for replying so late...Actually the problem was that the behavior of the application when it is "published" to Azure. As your solution was limited to working with Visual studio...i was confused as to what settings to do when we publish to Azure..Neverthless i figured that out with putting the same keys in the application settings of the portal. There is no problem with that now. All credit goes to you actually, as you showed us how to implement the key vault in a simplified way. Hats off to you. Do you have any simplified tutorials for Azure Devops? I need to deploy the solution as a UAT and Prod.
Is it possible to use Azure Key Vault to get a vault access secret in an Angular app? Key vault is easily use in Nodejs but I want to use in in Angular getting error. can you please provide video for implement Azure Key Vault in Angular App
@@ranjanrajesh930 Since connecting to key vault needs to be authenticated, having it connecting directly from the client-side is definitely not recommended. Hope that answers your question.
SHARK224 Thanks for the comment. With the key vault as a connected service and config builder it's more easy to connect to the vault. There is a video on my channel - Let know in case you need further help.
Thank for your comment - Anything in particular that you think is not valid? The overall concept of key vault and how it gets used has not changed much though
Thank you - and yes this one is outdated. The latest one with blog post is is here - www.rahulpnath.com/blog/connect-net-core-to-azure-key-vault-in-ten-minutes/
Excellent step by step tutorial. Thank you!
Thanks for leaving a comment and happy it helps!
Many things covered in teh video. Nice work!
Tarvinder Singh Thank you, glad you like it
Hi Rahul,
Great job man. Nicely explained. Thanks!
Hey Rupesh,
Glad you liked it, and thanks for letting me know!
Another great tutorial. Thank you Rahul!
My pleasure! This one is my first video here in this channel. You should also check the more recent video on this www.rahulpnath.com/blog/connect-net-core-to-azure-key-vault-in-ten-minutes/
Thanks Rahul for way of explanation.......
Just what I was looking for ..
Thanks Rahul ..
Awesome glad you liked it. Check out my blog posts as well if you are looking for more info rahulpnath.com/blog/category/azure-key-vault
Excellent Rahul. More useful information
Glad you like it
Excellent tutorial, simple and very helpful for beginners
thank you Sharfan Shahabdeen. glad that you liked it. Do check out my blog articles if you are getting started www.rahulpnath.com/blog/category/azure-key-vault/
looks great, thank you very much
Thank you for making this video, it helped alot
Kevin Thanks for the feedback and glad it helped
Rahul.......Thanks for ths video
Great video, it helped a lot.
Yaron Borenstein Glad it helps!
Really good one, appreciate the efforts, cheers!!
Glad you like it!
Great one... Thanks
suresh mygopula Thank you - glad you like it 😀
Thanks Rahul to share it :)
Glad you liked it Jordi Espada !
Simply awesome 👏
Thanks Gaurav and glad you liked it. Also checkout out how you can use it from .NET Core here th-cam.com/video/6l_kpygO0Ic/w-d-xo.html if that is something of interest
Thanks for making this video.
k102stone Thank you!
very good explanation. thanks
Glad it was helpful!
Nice video for beginners. Really useful
Thanks MohammedAshrafali Ansari . Glad you liked it
Thanks for the tutorial. Could you please share an approach to access the key vault from a google cloud application? Any options to do that? I have my app running from google cloud run or inside a virtual machine in google cloud but needs to use the application secrets stored in AZ key-vault. (rather than using Google secrets - enterprise strategy). I would appreciate if you can share some pointers.
Very helpful! Thank you!
Thanks. Glad you liked it
Please add next link for next video on this topic so that we don’t miss. Thanks a lot👍
Are you looking for videos around Azure Key Vault? If so check out my Key Vault Playlist here - th-cam.com/play/PL59L9XrzUa-nEwFPxQRu8jV94uM00pN0i.html
Let know if that helps!
Good One. It helped me.
Hey Rahul,
Very nice video really awesome step by step real scenario.
Pramod Lawate Glad you liked it. Thank you!
Pramod Lawate Thanks for the comment again. It really motivated me to go and publish the follow up video on using Certificate based authentication. Had been procrastinating on it for a while and your comment was a booster! th-cam.com/video/JbshGF4ZwGE/w-d-xo.html
Good really i am awaiting for the same rahul thank you so much. Want to tune with you every day for new update ☺
Azure has changed a lot in the span of 6 years if you can kindly update the video with the latest changes.
Anyways thanks for the help.
Thanks for the comment - yes sure it did. The overall concept of key vault and how it gets used has not changed much though. Anything in particular that you were referring to? Happy to do an updated video.
@@RahulNath LIke the way AD has to be set up, plus you can use a .net core app to set it up.
@@Nobo_On_The_Rocks Thanks for your feedback. Like I said since the basic key vault workflow is the same I guess it still is relevant. I have a newer video on using Connected Service as well in the channel if that helps. th-cam.com/video/S7EPrlpPqXw/w-d-xo.html
Thanks again for your comments 👍
Can we connect to key vault without Azure ad application...i am new to this
Authenticating with Key Vault is using AD application token. You can use Managed Identity to avoid having to manage the AD app and secrets/certificates explicitly. You can read more about it and the associated video here www.rahulpnath.com/blog/connect-net-core-to-azure-key-vault-in-ten-minutes/
Let know if you have additioal questions.
@@RahulNath Thanks. Basically i wanted to use key Vault with SSIS to store connection string or sensitive information. I will try this and let you know.
good tutorial.. Thanks
Sean D glad that you liked it!
Good demo.
Arun Rana Thank you. Glad it helps!
Thanks Rahul. Can I have link for your next video where you talked about not putting clientId/Secret in web.config?
Its available here th-cam.com/video/JbshGF4ZwGE/w-d-xo.html
Thanks for the great video. I am facing one issue:
I am getting access denied error while executing the function GetSecretAsync(). I have given the full permission to the application in My vault.
Access denied certainly looks like a permission issue. Can you double check that you have set the correct permissions for the AD application.? Can you try creating a new key vault and see if the problem exists there as well?
Hi we can save azure AD application secret key as well into key vault secret right ?
You need the secret to connect to the key Vault and if the secret to connect to vault is in another key Vault then you run into the 'chicken and egg problem'. Recommended is using certificate or if your application is hosted on Azure use MSI. rahulpnath.com/blog/authenticating-with-azure-key-vault-using-managed-service-identity/
Let know if that helps.
Can we store security token temporary in key vault and re new every two hours?
There is nothing stopping you from doing it. But what are you trying to achieve here? Maybe that will help add more clarity
@@RahulNath I need to store a secure token and reuse the same token to call an API also need to refresh the token after two hours. What is the best option?
Great video... Now i have knowledge about this Azure KeyVault feature.
But one question : In case of different environment (Dev/Stage/Prod), we will switch the config file. SO how can we perform this switch in Azure KeyVault?
Glad that you liked the video and thanks for leaving a comment. For handling different environment can you check my blog post on the same and let know if it helps. rahulpnath.com/blog/azure-key-vault-in-a-real-world-application
Let know in case you have any further questions.
Why do all the key vault tutorials I find only show how to manage secrets, but not RSA keys?
Secrets are more commonly used in App dev, probably that is a reason? Overall concepts are the same. What specifically of the keys are you looking for?
nice tutorial. Can you provide dotcore examples ?
Thank you - This is the latest video and blog post on .net core www.rahulpnath.com/blog/connect-net-core-to-azure-key-vault-in-ten-minutes/
Also do check out the popular ASP Series here if you haven't already bit.ly/asp-net-core-series
Do reach out if you have specific questions.
can u help me how to retrieve secrets from vault in java using certificate
I had written about using key vault from Java a while back. You can find the article here www.rahulpnath.com/blog/using-azure-key-vault-from-a-java-application/
Let me know if that helps and if you have any specific questions. I don't primarily work on java, so might not be of much help, but can try :)
Can we use secret name as APP_ENV in azure key vault. I tried it and it says i cannot use special characters like _
There are limitations on the characters allowed in the name. Below is from the documentation . (docs.microsoft.com/en-us/azure/key-vault/general/about-keys-secrets-certificates#objects-identifiers-and-versioning?WT.mc_id=AZ-MVP-5003875 )
_An object-name is a user provided name for and must be unique within a Key Vault. The name must be a 1-127 character string, starting with a letter and containing only 0-9, a-z, A-Z, and -._
Hello Rahul,
Very good post. I have tried on my local and am able to access the key vault via the visual studio 17. However, when i am publishing the app to the azure, I get "forbidden" errors.
Can you please let me know what configuration is required on Azure end with respect to your application.
Sandeep Wagh Glad it helps. What authentication mechanism are you using ? When is the forbidden error occurring , is it at runtime or when trying to deploy?
@@RahulNath Hi Rahul..this is at runtime. I would like to know what steps you perform when you publish the same application to Azure. There might be some settings in the "ApplicationSettings" of my MVC we app i have published to Azure. Please note that the application works perfectly fine on my local with your set of steps.
@@Dr.Smitaphysio24 Sorry for the delayed reply. Were you able to resolve this issue? What authentication mechanism are you using? Are you using the same auth credentials in local and azure? Will be great if you can detail out the steps you are doing
@@RahulNath Yes i am still working on this. Was working on other issues. But i will get back to you with all observations and effors to resolve it.
@@RahulNath Hello Rahul...Sorry for replying so late...Actually the problem was that the behavior of the application when it is "published" to Azure. As your solution was limited to working with Visual studio...i was confused as to what settings to do when we publish to Azure..Neverthless i figured that out with putting the same keys in the application settings of the portal. There is no problem with that now. All credit goes to you actually, as you showed us how to implement the key vault in a simplified way. Hats off to you. Do you have any simplified tutorials for Azure Devops? I need to deploy the solution as a UAT and Prod.
Good job :)
Rahul Shukla Glad you liked it !
Can you use key vault in angular.How we can usein angular
Sure you can. Can you give more details on your use case Rajesh? Are you looking to integrate with it from the front end or though a backend server?
Is it possible to use Azure Key Vault to get a vault access secret in an Angular app? Key vault is easily use in Nodejs but I want to use in in Angular getting error. can you please provide video for implement Azure Key Vault in Angular App
@@ranjanrajesh930 Since connecting to key vault needs to be authenticated, having it connecting directly from the client-side is definitely not recommended. Hope that answers your question.
Hi followed this step.....but i got the status as Waiting for Activation
Biju Krrish Kindly provide more details - where are you getting this status ?
Thanks, but it is complicated process
SHARK224 Thanks for the comment. With the key vault as a connected service and config builder it's more easy to connect to the vault. There is a video on my channel - Let know in case you need further help.
Thanks, seems you need to update this video.. no longer valid
Thank for your comment - Anything in particular that you think is not valid? The overall concept of key vault and how it gets used has not changed much though
It is outdated now. pls redo this concept by latest version of you. ur latest videos are more matured and have good clarity
Thank you - and yes this one is outdated. The latest one with blog post is is here - www.rahulpnath.com/blog/connect-net-core-to-azure-key-vault-in-ten-minutes/