How can we improve Azure API Management?

Integration with Azure KeyVault

Currently, we store sensitive information in API Portal - Properties and use them as {{key}}

Provide integration of Azure KeyVault so that sensitive information can be stored in Azure KeyVault and allow using it inside API methods or policies like {{vault:key}}

By this feature, we will be able to centralize all the keys in the Azure KeyVault and use Properties only for non-sensitive information.

341 votes
Vote
Sign in
(thinking…)
Password icon
Signed in as (Sign out)
You have left! (?) (thinking…)
Puneet Ghanshani shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

8 comments

Sign in
(thinking…)
Password icon
Signed in as (Sign out)
Submitting...
  • Kris Akins commented  ·   ·  Flag as inappropriate

    Support for certificates is good, but will there general support for key vault secrets, such as JWT signing keys?

  • Jorge Cruz commented  ·   ·  Flag as inappropriate

    Include the ability to retrieve Secrets from key vault and leverage them within Azure APIM Policy

  • Anonymous commented  ·   ·  Flag as inappropriate

    include ARM template integration, it's a nightmare now having to do base64 encoding and pass files -- would be better to pass a keyvault URI or resource reference

  • Dan Byrne commented  ·   ·  Flag as inappropriate

    We also request to have the API Management Subscription Keys stored in KeyVault for security purposes

  • Erik Oppedijk commented  ·   ·  Flag as inappropriate

    And please add a way to connect to different keyvaults, when using multiple tenants (dev/test/prod)

Feedback and Knowledge Base