Azure Key Vault secret used in Web Activity body

Question

Azure Key Vault secret used in Web Activity body

Robert Matear 6

Hi,

I am trying to figure out what the best approach is for injecting secrets from Azure Key Vault into a Web Activity found in the Azure Data Factory. Specifically in this case I want to inject a secret into the body of a request.

The only solution that I have found so far involves using another web request to fetch a key from Azure Key Vault using it's REST API - this works fine with a few keys and a few pipelines but this will get difficult to manage at scale. I noticed there is a linked service to Azure Key Vault but there doesn't seem to be a way of referencing the service and retrieving keys.

Any other solution ideas would be appreciated, and please let me know if there is a way of using the linked service to inject secrets.

Thanks,
Rob

1 answer

Your answer

Answer 1

Nandan Hegde 36,241 MVP Volunteer Moderator

Hey @Robert Matear ,
Currently the Key vault integration in ADF v2 is only for Linked service credential connectivity purpose and there is no integration of the key vault with any activities within pipeline.
The only easy was as of now is using a web activity to connect to key vault REST API via MSI and fetch the secret value and pass it to another activity.

The other way is having the entire logic within Azure function/ custom activity thereby having 1 code .

VipulSparsh-MSFT 16,316 Reputation points Microsoft Employee Moderator

2021-02-26T14:04:36.717+00:00

@Robert Matear

I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?

If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.

----------

Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

Share via

Azure Key Vault secret used in Web Activity body

1 answer

Your answer