How can we improve Azure API Management?

← API Management

Integration with Azure KeyVault

Currently, we store sensitive information in API Portal - Properties and use them as {{key}}

Provide integration of Azure KeyVault so that sensitive information can be stored in Azure KeyVault and allow using it inside API methods or policies like {{vault:key}}

By this feature, we will be able to centralize all the keys in the Azure KeyVault and use Properties only for non-sensitive information.

341 votes

Vote

Sign in

Your name

Your email address

(thinking…)

Password

Sign in with:

Forgot password?

Create a password

Signed in as (Sign out)

You have left! (?) (thinking…)

Puneet Ghanshani shared this idea · Oct 10, 2016 · Flag idea as inappropriate… · Admin →

planned · Nov 28, 2018

Show previous admin responses (2)

8 comments

Add a comment…

Sign in

Your name

Your email address

(thinking…)

Password

Sign in with:

Forgot password?

Create a password

Signed in as (Sign out)

Submitting...

Gert Vloo commented · February 11, 2019 12:24 PM · Flag as inappropriate

Is there some update on this request?
I would like to link a property to a key-vault, like how it is done in api-apps with the settings. That way the use of properties in policies stays the same and the costs of querying the key-vault are reduced.

Example: @Microsoft.KeyVault(SecretUri=https://KEYVAULTNAME.vault.azure.net/secrets/VERYSECREDPASSWORD)
Kris Akins commented · August 11, 2018 6:35 PM · Flag as inappropriate

Support for certificates is good, but will there general support for key vault secrets, such as JWT signing keys?
Jorge Cruz commented · April 11, 2018 12:31 PM · Flag as inappropriate

Include the ability to retrieve Secrets from key vault and leverage them within Azure APIM Policy
Anonymous commented · July 13, 2017 2:34 PM · Flag as inappropriate

include ARM template integration, it's a nightmare now having to do base64 encoding and pass files -- would be better to pass a keyvault URI or resource reference
Laurent Lesle commented · July 11, 2017 1:32 PM · Flag as inappropriate

+ key rotation
Alec Massey commented · March 7, 2017 6:29 AM · Flag as inappropriate

This is a definite must for Azure - AWS already offer this kind of integration
Dan Byrne commented · February 15, 2017 3:53 PM · Flag as inappropriate

We also request to have the API Management Subscription Keys stored in KeyVault for security purposes
Erik Oppedijk commented · January 27, 2017 1:21 AM · Flag as inappropriate

And please add a way to connect to different keyvaults, when using multiple tenants (dev/test/prod)

API Management: Integration

Searching…

No results.
Clear search results

Give feedback
- (General Feedback) 3,538 ideas
- Additional Services 237 ideas
- Analytics Platform System 10 ideas
- API Apps 3 ideas
- API Management 390 ideas
- Application Insights 510 ideas
- Automation 410 ideas
- Azure Active Directory 2,960 ideas
- Azure Active Directory Application Requests 201 ideas
- Azure Advisor 12 ideas
- Azure Alert Management 60 ideas
- Azure Analysis Services 125 ideas
- Azure API for FHIR 0 ideas
- Azure App Configuration 5 ideas
- Azure Backup 371 ideas
- Azure Bot Service 52 ideas
- Azure Cloud Shell 250 ideas
- Azure Confidential Compute 1 idea
- Azure Container Instances 72 ideas
- Azure Container Registry 45 ideas
- Azure Cosmos DB 264 ideas
- Azure CycleCloud 0 ideas
- Azure Data Explorer 31 ideas
- Azure Database for MariaDB 9 ideas
- Azure Database for MySQL 52 ideas
- Azure Database for PostgreSQL 83 ideas
- Azure Database Migration Service 27 ideas
- Azure Databricks 45 ideas
- Azure DDoS Protection 6 ideas
- Azure Digital Twins 14 ideas
- Azure Event Grid 40 ideas
- Azure Functions 132 ideas
- Azure Governance 56 ideas
- Azure Government 68 ideas
- Azure IoT 225 ideas
- Azure IoT Central 58 ideas
- Azure IoT Device Catalog 9 ideas
- Azure IoT Edge 54 ideas
- Azure IoT Solution Accelerators 20 ideas
- Azure Key Vault 86 ideas
- Azure Kubernetes Service (AKS) 110 ideas
- Azure Management Groups 12 ideas
- Azure Maps 35 ideas
- Azure Marketplace 372 ideas
- Azure Media Services 245 ideas
- Azure Migrate 28 ideas
- Azure mobile app 198 ideas
- Azure Monitor 66 ideas
- Azure Pack 308 ideas
- Azure portal 1,768 ideas
- Azure Resource Manager 372 ideas
- Azure Search 207 ideas
- Azure Security Center 150 ideas
- Azure Sentinel 12 ideas
- Azure Service Health 13 ideas
- Azure SignalR Service 7 ideas
- Azure Spatial Anchors 9 ideas
- Azure Sphere 41 ideas
- Azure Stack 134 ideas
- Azure TCO Calculator 28 ideas
- Azure Time Series Insights 3 ideas
- Batch 36 ideas
- Batch AI 8 ideas
- Biztalk Services 23 ideas
- Blockchain 36 ideas
- Cache 45 ideas
- CDN 83 ideas
- Cloud Services (Web and Worker Role) 275 ideas
- Cost Management 158 ideas
- Customer Insights 13 ideas
- Customer Lockbox for Microsoft Azure 0 ideas
- Data Catalog 108 ideas
- Data Factory 632 ideas
- Data Lake 332 ideas
- Data Science VM 18 ideas
- Diagnostics and Monitoring 179 ideas
- Event Hubs 14 ideas
- Global Infrastructure 33 ideas
- HDInsight 120 ideas
- Lab Services 220 ideas
- Log Analytics 853 ideas
- Logic Apps 1,189 ideas
- Machine Learning 438 ideas
- Mobile Engagement 19 ideas
- Networking 669 ideas
- Notification Hubs 28 ideas
- Scheduler 47 ideas
- Scripting and Command Line Tools 101 ideas
- SDK and Tools 137 ideas
- Security and Compliance 75 ideas
- Service Bus 174 ideas
- Service Fabric 271 ideas
- Signup and Billing 1,223 ideas
- Site Recovery 210 ideas
- SQL Data Sync 66 ideas
- SQL Data Warehouse 231 ideas
- SQL Database 557 ideas
- SQL Managed Instance 60 ideas
- SQL Server 9,155 ideas
- Storage 651 ideas
- StorSimple 46 ideas
- Stream Analytics 224 ideas
- Support Feedback 248 ideas
- System Center Data Protection Manager 103 ideas
- Update Management 107 ideas
- Virtual Machines 1,366 ideas
- Web Apps 312 ideas
Microsoft Azure