Jump to content

Encryption keys in Azure Key Vault (instead of web.config)

Goossens

By Goossens
in Feature Requests

 Share

Recommended Posts

Goossens Contributor

Goossens

Posted
Posted

PasswordState encryption keys are currently split and stored in two places: the database and the web.config file.

 

To improve protection of the keys in certain scenarios, we would like to store the keys in an Azure Key Vault. It would be sufficient if only the keys stored in Web.config could be stored in the Key Vault instead.

 

It seems Configuration Builders can be used to achieve this, which requires changes to the application. Access to key vault would ideally be done using Managed Identity.

 

This could also allow the connection string to be stored in the Key Vault.

Thanks.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...