Skip to content

azure keyvault

Description

This document outlines the steps to create the Azure keyvault from terraform and all its related components.

Steps

Terraform

1) Create Keyvault - (Keyvault.tf) - The name of keyvault should be less than 24 char
2) Give access Policies - (Keyvault.tf) - Give ObjectId reference from Identities.tf
3) Create private endpoint - (PvtEndpoints.tf)- Give the reference of new Keyvault in "private_connection_resource_id"
4) Create A record in pvt Dns Zone - Add name of keyvault in the local.records list in dns-zone.tf

Reference Commits - > https://dev.azure.com/MAJORITY/Bank/_git/bank-azure-infrastructure

afccbfb0775088974224b4d7b080c78491861b66

9d7f54e9926884742db88a75ba1bbfcdb8f7c503

Remaining Steps:-

5) Create a secret. This can be easily done from azure portal.
6) Open network policy
7) Add keyvault in app-settings config