Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
How to store client credentials?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 59%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKV%3C/text%3E%3C/svg%3E)
Keith Viking
20
Reputation points
I am creating a WebAPI (Core/ .Net 6).
When creating the Registration for the app i add some client credentials. I noticed once i have them i cant view one half of the credentials again.
I did a test by making a call to ..{tenant_id}/oauth2/v2.0/token and passing in the client_id and secret (along with other params) i was able to make a successful call.
I feel in future i may not remember to store the client credentials or i may need to pass them over to the same organisation for whatever reason.
Is there a way to tackle this type of scenario? I did read on Azure Key Vault but the demos only showed how it protected VMs or databases.
Azure Key Vault
Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
Developer technologies | ASP.NET Core | Other
Developer technologies | ASP.NET Core | Other
A set of technologies in .NET for building web applications and web services. Miscellaneous topics that do not fit into specific categories.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous2023-06-01T01:48:58.46+00:00 Hi @Keith Viking,
Could you kindly check the official link first. Steps to generate a new client secret and link it to key-vault
Best Regards
Jason
Sign in to comment
Sign in to answer