Azure Key Vault provides a secure storage area for managing all your app secrets so you can properly encrypt your data in transit or while it’s being stored.<\/p>\n\n\n\n
When studying for your exam it’s important to understand how your Azure key vault helps manage secrets, certificates, and encryption keys securely. <\/p>\n\n\n\n
You’ll need to understand what it’s designed for which is for storing sensitive information. <\/p>\n\n\n\n
Why use Key Vault?<\/strong><\/p>\n\n\n\n When to consider multiple Key Vaults:<\/strong><\/p>\n\n\n\n Like you’ll need to know API keys, passwords, and cryptographic keys. And the key vault keeps those things secure. <\/p>\n\n\n\n You’ll want to know how access is controlled using policies or RBAC. Those are the two different options allowing only specific apps or users to retrieve secrets. So keep that in mind. Understand how those work together and how you can use each one individually. This is a huge advantage overall when it comes to security. <\/p>\n\n\n\n And don’t overlook customer managed keys which give you control over encryption used by Azure services. <\/p>\n\n\n\n You’ll want to consider when to use multiple key vaults versus single key vaults. Now remember this is going to be a scenario based exam so you’ll see some scenarios possibly based on this here. <\/p>\n\n\n\n So keep in mind RBAC, understand your policies, understand your key vaults. These are the type of things that you’ll probably see on your exam.<\/p>\n\n\n\n Links:<\/p>\n\n\n\n https:\/\/docs.microsoft.com\/en-us\/azure\/azure-resource-manager\/resource-manager-keyvault-parameter<\/a>\n
\n
https:\/\/learn.microsoft.com\/en-us\/azure\/app-service\/overview-managed-identity?tabs=portal%2Cdotnet<\/a><\/p>\n\n\n\n