Azure Key Vault and Azure AD Enterprise apps certificate, secrets, shared keys expiry alerts

SenhorDolas 1,321 Reputation points
2023-01-20T17:25:37.25+00:00

Capture

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,375 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Santhi Swaroop Naik Bukke 595 Reputation points
    2023-01-20T17:29:14.7833333+00:00

    Here is a sample logic app workflow that you can use to monitor Azure Key Vault and Azure AD Enterprise apps for certificate, secrets, and shared key expiry alerts:

    1. Create a new logic app in Azure.
    2. Add a "Recurrence" trigger to the logic app to run at a specific interval (e.g. every day).
    3. Add an "HTTP" action to the logic app, and configure it to make a GET request to the Azure Key Vault API to retrieve the list of certificates, secrets, and shared keys.
    4. Add a "For Each" loop to the logic app, and configure it to iterate over the list of items retrieved in step 3.
    5. Within the "For Each" loop, add a "Condition" action to check if the expiry date of the current item is within a specified number of days (e.g. 30 days).
    6. If the condition in step 5 is met, add an "HTTP" action to send an email notification to the specified recipients, or a "Service Bus" action to send a message to a queue, or any other action as per your requirement.
    7. If the condition in step 5 is not met, add a "No-Operation" action to the logic app to skip that item and move on to the next one.
    8. Once the logic app is configured, you can test and deploy it.

    Note: You will have to authenticate your logic app to access Key Vault and Azure AD Enterprise apps by providing the appropriate credentials and permissions.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.