Azure Key Vault Management
Important: This connector and its actions have been removed from Nintex Automation Cloud and can now be found in Nintex Gallery.
Azure Key Vault Management is the management API for Azure Key Vault Data. Azure Key Vault Data is a cloud service for securely storing and accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, certificates, or cryptographic keys. Key Vault service supports two types of containers: vaults and managed hardware security module (HSM) pools. Vaults support storing software and HSM-backed keys, secrets, and certificates. Managed HSM pools only support HSM-backed keys. For more information on Azure Key Vault Management see the company website.
In the context of Nintex Automation Cloud, Azure Key Vault Management is a connector A software component that allows seamless integration with third-party services, business applications, and content stores. Examples include Salesforce, Box, and Microsoft SharePoint. Connectors are used to create connections required for workflow actions and start events.. The Azure Key Vault Management connector is used to create connections for Azure Key Vault Management actions A tool for building the processes, logic, and direction within workflows.. Use these actions in a workflow to manage your Azure Key Vaults. Then use the Azure Key Vault Data actions to create, delete, retrieve and update secrets. This is useful for controlling access to passwords or other sensitive information.
Jump to:
Create an Azure Key Vault Management connection
Note: Your browser-stored credentials are accessed to create connections. Either clear credentials from browser memory or make sure the stored credentials are for the intended environment.
Create a connection from the connections page or from the action configuration panel when configuring the action. For information about creating connections and assigning permissions, see Manage connections.
In the Add a new connection section, complete the fields as follows:
|
In this field |
Select or enter the following |
|---|---|
| Connection name | A name for your new connection |
| Client ID | The client ID generated from the Azure portal tenant settings page. |
| Client secret | The client secret generated from the Azure portal tenant settings page. |
| Tenant ID | The tenant ID displayed on your Azure portal tenant settings page. |
Azure Key Vault Management account requirements
- The account you use to create a connection for Azure Key Vault Management is the account that has access to the Azure Key Vault Management actions.
-
You must register a single tenant app in Azure Active Directory and configure a client secret. See Quickstart: Register an application with the Microsoft identity platform for the steps to register a new application. This must be a single tenant app.
-
You need the app's client ID, client secret, and the tenant ID. You can find them on your Azure portal tenant settings page.
Create a Azure Key Vault Management data lookup
Use the Azure Key Vault Management data lookup to retrieve data from Azure Key Vault Management connection and create a drop-down list within a form. Each data lookup is configured for a specific Azure Key Vault Management account. You can create as many data lookups as you need. For more information on creating a data lookup and assigning permissions to it, see Data lookups. After you create a Azure Key Vault Management data lookup, you can add a Data lookup control A form control that allows users to select from a drop-down list of values that have been fetched from a third-party service. to your form and configure it to use your new data lookup.
You can create a Azure Key Vault Management data lookup to:
- List subscriptions: List the subscriptions available from a Azure Key Vault Management connection.
Azure Key Vault Management data lookup fields
To access the data lookup fields, in the Add data lookup section, select the Azure Key Vault ManagementConnector and the Operation.
|
Operation |
Field or selection |
Description |
|---|---|---|
| List subscriptions | Connection | The connection to use for the data lookup. |