Azure Key Vault Management

Azure Key Vault Management is the management API for Azure Key Vault Data. Azure Key Vault Data is a cloud service for securely storing and accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, certificates, or cryptographic keys. Key Vault service supports two types of containers: vaults and managed hardware security module (HSM) pools. Vaults support storing software and HSM-backed keys, secrets, and certificates. Managed HSM pools only support HSM-backed keys. For more information on Azure Key Vault Management see the company website.

In the context of Nintex Automation Cloud, Azure Key Vault Management is a connector Service used to define a connection required for associated actions and start events. Examples include Salesforce and Box. Method of integration to cloud services, business applications and content stores.. The Azure Key Vault Management connector is used to create connections for Azure Key Vault Management actions A tool for building the processes, logic, and direction within workflows.. Use these actions in a workflow to manage your Azure Key Vaults. Then use the Azure Key Vault Data actions to create, delete, retrieve and update secrets. This is useful for controlling access to passwords or other sensitive information.

Create an Azure Key Vault Management connection

Note: Your browser-stored credentials are accessed to create connections. Either clear credentials from browser memory or make sure the stored credentials are for the intended environment.

Create a connection from the connections page or from the action configuration panel when configuring the action. For information about creating connections and assigning permissions, see Manage connections.

In the Add a new connection section, complete the fields as follows:

In this field

Select or enter the following

Connection name A name for your new connection
Client ID The client ID generated from the Azure portal tenant settings page.
Client secret The client secret generated from the Azure portal tenant settings page.
Tenant ID The tenant ID displayed on your Azure portal tenant settings page.

Azure Key Vault Management account requirements

  • The account you use to create a connection for Azure Key Vault Management is the account that has access to the Azure Key Vault Management actions.
  • You must register a single tenant app in Azure Active Directory, and configure a client secret. See Quickstart: Register an application with the Microsoft identity platform for the steps to register a new application. This must be a single tenant app.

  • You need the app's client ID, client secret, and the tenant ID. You can find them on your Azure portal tenant settings page.

Create a Azure Key Vault Management data source

Use the Azure Key Vault Management data source to retrieve data from Azure Key Vault Management connection and create a drop-down list within a form. For more information on creating a data source and assigning permissions to it, see Data sources.

You can create a Azure Key Vault Management data source to:

  • List subscriptions: List the subscriptions available from a Azure Key Vault Management connection.

Each data source is configured for a specific Azure Key Vault Management account. You can create as many data sources as you need.

Azure Key Vault Management data source fields

To access the data source fields, in the Add data source section, select the Azure Key Vault ManagementConnector and the Operation.

Operation

Field or selection

Description

List subscriptions Connection The connection to use for the data source.