Keeping secrets safe and out of source code has always been challenging. De-coupling sensitive information like connection strings, certificates and passwords keeps these secrets out of source control and away from the prying eyes of decompilers.
This session provides an overview of Managed identities for Azure Resources which solves this long-standing problem.
Demonstrated is an Azure App Service pulling secrets out of Azure Key Vault with no stored password or token. The Azure portal is used to create a managed identity and assign it to the application, then Azure Key Vault is configured to trust it in a particular role.
Additionally, you learn the difference between a system assigned managed identity vs user assigned managed identity.
This presentation gives you the basic knowledge to store and retrieve secrets from a variety of Azure service offerings.
Bob Crowley is a Senior Software Developer in Portland Maine where he builds solutions in the .Net and Azure ecosystems. Having gained so much from the community himself, he is trying to give a little back as an occasional presenter at his local Casco Bay .Net User Group, Boston Code Camp and Vermont Code Camp. Find Bob on twitter
• Pizza and sodas generously provided by Base 36 (http://www.base36.com/).
• Space generously provided by Tyler Technologies
• Casco Bay .NET Users Group meetings are non-solicitation events.
• Sponsors are given a few minutes to speak about their company and services at the beginning of each event. Attendees are asked to refrain from soliciting business.