Expand my Community achievements bar.

SOLVED

Integration of Azure Key Vault for Secret Management in AEM as a Cloud Service

Avatar

Level 3
Level 3
5/24/24 12:58:56 AM

Hi All

Is it possible to integrate Azure Key Vault with AEM as a Cloud Service for managing secrets such as API keys, passwords, and connection strings?

If feasible, what are the recommended steps or best practices for integrating Azure Key Vault with AEM as a Cloud Service?

Please share any related documents .

 

Thanks

 

 

Views

121

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Community Advisor
Community Advisor
5/24/24 8:50:13 AM

Hi @KannanCh2,
You can refer to the following document - 

Configure an Azure Key Vault


The general steps for integrating Azure Key Vault in AEMaaS would be as follow-

  1. Setup Azure Key Vault Key - Create new key vault instance, add secrets to the key vault & define access policies to read these secrets.
  2. Access Key Vault in AEM - Ensure IAM (Service Principal or Managed Identify) has permissions to access Key Vault, Then authentication with Key Vault from AEM Application (Azure AD Authentication, Client Certificates etc.) and finally using REST APIs (Azure Key Vault REST API reference) or Azure SDKs (Azure SDK for Java) to retrieve secrets from Azure Key Vault.

Hope this helps!

View solution in original post

Views

81

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
2 Replies

Avatar

Correct answer by
Community Advisor
Community Advisor
5/24/24 8:50:13 AM

Hi @KannanCh2,
You can refer to the following document - 

Configure an Azure Key Vault


The general steps for integrating Azure Key Vault in AEMaaS would be as follow-

  1. Setup Azure Key Vault Key - Create new key vault instance, add secrets to the key vault & define access policies to read these secrets.
  2. Access Key Vault in AEM - Ensure IAM (Service Principal or Managed Identify) has permissions to access Key Vault, Then authentication with Key Vault from AEM Application (Azure AD Authentication, Client Certificates etc.) and finally using REST APIs (Azure Key Vault REST API reference) or Azure SDKs (Azure SDK for Java) to retrieve secrets from Azure Key Vault.

Hope this helps!

Views

82

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Administrator
Administrator
6/10/24 6:13:41 AM

@KannanCh2 Did you find the suggestion helpful? Please let us know if you require more information. Otherwise, please mark the answer as correct for posterity. If you've discovered a solution yourself, we would appreciate it if you could share it with the community. Thank you!



Kautuk Sahni

Views

31

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
Dispatcher returns 400 for anonymous POST request Solved

Views

138

Likes

0

Replies

8
Images upload and insert to a webpage

Views

42

Likes

0

Replies

1
How to add individual parsys for each iteration ?

Views

57

Likes

0

Replies

2
Unable to publish a document in AEM Cloud.

Views

68

Likes

0

Replies

2
tips when developing for AEMaaCS (sites) when you're coming from on-premise

Views

60

Likes

0

Replies

2