Azure Key Vault Management

Azure Key Vault Management is the management API for Azure Key Vault Data. Azure Key Vault Data is a cloud service for securely storing and accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, certificates, or cryptographic keys. Key Vault service supports two types of containers: vaults and managed hardware security module (HSM) pools. Vaults support storing software and HSM-backed keys, secrets, and certificates. Managed HSM pools only support HSM-backed keys.

For more information on Azure Key Vault Management see the company website.

In the context of Nintex Workflow Cloud, Azure Key Vault Management is a connector Service used to define a connection required for associated actions and start events. Examples include Salesforce and Box. Method of integration to cloud services, business applications and content stores..

The Azure Key Vault Management connector Service used to define a connection required for associated actions and start events. Examples include Salesforce and Box. Method of integration to cloud services, business applications and content stores. is used to create connections for Azure Key Vault Management actions A tool for building the processes, logic, and direction within workflows..

The following actions are available:

Use these actions in a workflow to manage your Azure Key Vaults. Then use the Azure Key Vault Data actions to create, delete, retrieve and update secrets. This is useful for controlling access to passwords or other sensitive information.

Create an Azure Key Vault Management connection

You can create connections from the Automate or Designer page.

Note: Your browser-stored credentials are accessed to create connections. Either clear credentials from browser memory or make sure the stored credentials are for the intended environment.

  • The account you use to create a connection for Azure Key Vault Management is the account that has access to the Azure Key Vault Management actions.

  • You must register a single tenant app in Azure Active Directory, and configure a client secret. See Quickstart: Register an application with the Microsoft identity platform for the steps to register a new application. This must be a single tenant app.

  • You need the app's client ID, client secret, and the tenant ID. You can find them on your Azure portal tenant settings page.

  1. On the top navigation bar, click Automate, and then select Connections from the left navigation.

  2. On the Connections page, click Add new.

  3. In the Add a new connection section that opens, fill in the following.

    In this field

    Select or enter the following
    Connector Azure Key Vault Management

  4. Click Connect.

  5. In the Configure a connection window, fill in the fields as follows.

    In this field

    Select or enter the following
    Connection name A name for your new connection
    Client ID The client ID generated from the Azure portal tenant settings page.
    Client secret The client secret generated from the Azure portal tenant settings page.
    Tenant ID The tenant ID displayed on your Azure portal tenant settings page.

  6. Click Connect.

  7. Follow the prompts to enter credentials and grant access to Nintex Workflow Cloud.

  8. In the permissions dialog, you can do one of the following:
    • Edit the Owners or Users permissions according to data source usage requirements and click Save permissions.

      • Tip: You can assign connection owners or users permissions according to your access requirements. For more information, see Permissions.

Your new connection appears on the Connections page.

    • On the top navigation bar, click Automate > Workflows, and then select the required workflow.

      • (Or)

    • On the top navigation bar, click Automate > Create workflow.
  2. Click the Azure Key Vault Management action you want to add the connection to, or drag a Azure Key Vault Management action into the workflow and select it.

  3. In the drop-down list for Connection, select Add new connection.

  4. In the Connection window, fill in the fields as follows.

    In this field

    Select or enter the following
    Connection name A name for your new connection
    Client ID The client ID generated from the Azure portal tenant settings page.
    Client secret The client secret generated from the Azure portal tenant settings page.
    Tenant ID The tenant ID displayed on your Azure portal tenant settings page.

  5. Click Connect.

  6. Follow the prompts to enter credentials and grant access to Nintex Workflow Cloud.

  7. In the permissions dialog, you can do one of the following:
    • Edit the Owners or Users permissions according to data source usage requirements and click Save permissions.

      • Tip: You can assign connection owners or users permissions according to your access requirements. For more information, see Permissions.

Your new connection appears in the Connection field of your action.

Permissions

Permissions enable you to manage access for other users to use, edit, and delete connections.

  Use

Edit

 Delete

Assign
permissions

Owners
Users

Note: By default, users with administrator role will have the same rights as a Connection owner.

Follow these steps to assign permissions from the Connections page:

  1. On the Connections page, click for the required connection.
  2. From the menu, select Permissions.

    3. The corresponding permissions window is displayed.

  3. To assign permissions:
    • In the Owners field, type the name of the user, and select from the list.
    • In the Users field, type the name of the user, and select from the list.
  1. Click Save permissions.