How can we improve Azure API Management?

Integration with Azure KeyVault

Currently, we store sensitive information in API Portal - Properties and use them as {{key}}

Provide integration of Azure KeyVault so that sensitive information can be stored in Azure KeyVault and allow using it inside API methods or policies like {{vault:key}}

By this feature, we will be able to centralize all the keys in the Azure KeyVault and use Properties only for non-sensitive information.

240 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Puneet Ghanshani shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    7 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • Kris Akins commented  ·   ·  Flag as inappropriate

        Support for certificates is good, but will there general support for key vault secrets, such as JWT signing keys?

      • Jorge Cruz commented  ·   ·  Flag as inappropriate

        Include the ability to retrieve Secrets from key vault and leverage them within Azure APIM Policy

      • Anonymous commented  ·   ·  Flag as inappropriate

        include ARM template integration, it's a nightmare now having to do base64 encoding and pass files -- would be better to pass a keyvault URI or resource reference

      • Dan Byrne commented  ·   ·  Flag as inappropriate

        We also request to have the API Management Subscription Keys stored in KeyVault for security purposes

      • Erik Oppedijk commented  ·   ·  Flag as inappropriate

        And please add a way to connect to different keyvaults, when using multiple tenants (dev/test/prod)

      Feedback and Knowledge Base