Goossens Posted May 29 Share Posted May 29 PasswordState encryption keys are currently split and stored in two places: the database and the web.config file. To improve protection of the keys in certain scenarios, we would like to store the keys in an Azure Key Vault. It would be sufficient if only the keys stored in Web.config could be stored in the Key Vault instead. It seems Configuration Builders can be used to achieve this, which requires changes to the application. Access to key vault would ideally be done using Managed Identity. This could also allow the connection string to be stored in the Key Vault. Thanks. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now