Kirk Evans Blog

.NET From a Markup Perspective

Join a Virtual Machine to Existing Domain with Key Vault and ARM templates

One of my customers is building a set of ARM templates for their internal users.  They wanted to remove the burden for users to specify the local administrator’s credentials, but wanted to store the credentials securely. To skip the explanation and just go to the code, see https://github.com/kaevans/vm-domain-join-key-vault. The problem is that you cannot reference… Read more

Using Azure KeyVault to Store Secrets

I have deleted the contents of this post as it demonstrated how to use clientID and clientSecret to obtain an AzureAD access token to Key Vault. This is not the correct guidance, your solution should leverage the Managed Service Identity feature of Azure AD or use certificates to authenticate to Azure AD in order to… Read more