Tag Archives: azure key vault

Be careful when you have escape char in Key Vault secret value

I recently had some works that required to use Azure Key Vault. Specifically a secret that stored a service principal’s password that contained some special characters (escape ones). This article just shows you my finding and how to fix it … Continue reading

Posted in Security Automation | Tagged | Leave a comment

Quick notes on the use of securestring in Azure Blueprints

Azure Blueprint does support secureString and secureObject type when you create artifact and blueprint definition. So far there is not much of information about the use of secureString with Azure Blueprint. This article would hopefully clarify somewhat about secureString.

Posted in Governance & Compliance | Tagged , | 1 Comment

Trigger an alert when setting storage encryption with Key Vault

There was a great question today in a private community channel asking about monitoring and alerting when a storage account encryption is configured to use key in Key Vault in stead of Microsoft managed key. This question just drove me … Continue reading

Posted in Monitoring & Detection | Tagged , | Leave a comment

A note behind Get-AzureKeyVaultSecret

First look at Get-AzureKeyVaultSecret   you would head to think about this cmdlet to retrieve secret information in Azure Key Vault secret. However, during my test this cmdlet also returns certificate information and its private key which is pretty much like … Continue reading

Posted in Security Operation | Tagged | Leave a comment

Notes with cross-subscription Event Hub

Event Hub is an event processing cloud service which provides the ability to process millions of message per second and make them readable by external services. In the security monitoring scenario, you may see a use case that external consumer like … Continue reading

Posted in Security Operation | Tagged | Leave a comment

Some fun with Azure Key Vault REST API and HttpClient – Part 5

We have gone through 5 articles about Azure Key Vault REST API in which we explored the possibility of working with Azure Key Vault REST API, specific to Vault and Secret. We also realized just ‘a bit‘ about how unclear … Continue reading

Posted in Secure Development | Tagged , | 2 Comments

Some fun with Azure Key Vault REST API and HttpClient – Part 4

The Part 2 in Some fun with Azure Key Vault REST API and HttpClient series provides simple guidance on how to create a new fresh secret without creating a new version of existing secret under a specified vault in Azure … Continue reading

Posted in Secure Development | Tagged , | 3 Comments

Some fun with Azure Key Vault REST API and HttpClient – Part 2

In previous article, I demonstrated how to use HttpClient to work with Azure Key Vault REST API. With this approach, you shouldn’t worry about your programming language skills. What I meant was that you could even use Python, for instance, … Continue reading

Posted in Secure Development | Tagged , | 5 Comments