Create Azure Key Vault and User-assigned Managed Identities
Multicloud Defense uses a user-assigned managed identity to access the Azure Key Vault secret. The following steps show how to create the Key Vault and how to grant the managed identity the necessary permissions to access the secret:
Procedure
Step 1 | Create a new User-assigned Managed Identity. |
Step 2 | Create a new Key Vault, for example, |
Step 3 | In the newly created Key Vault, go to Access Policies. |
Step 4 | Select Add Access Policy. |
Step 5 | Assign Secret permissions: |
Step 6 | Select Principal. |
Step 7 | Select the Managed Identity. |
Step 8 | Staying on the Key Vault configuration, navigate to . |
Step 9 | Select Reader Role. |
Step 10 | Search for the Managed Identity in the Select field and select it. |
Step 11 | Click Save. |