Download presentation
Presentation is loading. Please wait.
1
Securely pass passwords into your deployment
12/29/2018 1:43 PM THR3069 Securely pass passwords into your deployment Emil Wasilewski Cloud Solution Architect Microsoft Azure MVP © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
2
Agenda String vs SecureString Is SecureString is secure?
Demo Is SecureString is secure? Demo Azure Key Vault in Your deployment Demo
3
String vs SecureString
12/29/2018 1:43 PM String vs SecureString © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
4
String vs SecureString
„Standard” parameters like: VM sizes VM names SQL DB SKUs And many many more Sensitive parameters like: Passwords SSH Keys Reference to Key Vault Other sensitive data
5
Demo Emil Wasilewski 12/29/2018 1:43 PM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
6
String vs SecureString
7
String vs SecureString
8
Is SecureString… 12/29/2018 1:43 PM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
9
is secure? Password: SecurePassword! 12/29/2018 1:43 PM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
10
Demo Emil Wasilewski 12/29/2018 1:43 PM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
11
Is SecureString is secure?
12
ARM Template {"$schema": " "contentVersion": "1.0.0.0",
12/29/2018 1:43 PM ARM Template {"$schema": " "contentVersion": " ", "parameters": { "password": { "type": "securestring"}}, "variables": {}, "resources": [], "outputs": { "type": "string", "value": "[parameters('password')]"}}} © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
13
Is SecureString is secure?
14
Is SecureString is secure?
15
Azure Key Vault in Your deployment
16
Azure Key Vault in Your deployment
12/29/2018 1:43 PM Azure Key Vault in Your deployment Use it for sensitive parameters You can set it as: Static ID reference in Parameters file Dynamic ID reference via Nested template Linked variable during Release proces in VSTS © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
17
Azure Key Vault in Your deployment - static
{"$schema":" "contentVersion": " ", "parameters": { "password": { "reference": { "keyVault": { "id": "/subscriptions/{SubID}/resourceGroups/{NameOfRG}/providers/Microsoft.KeyVault/vaults/IgniteProd"}, "secretName": "IgnitePassword"}}}}
18
Azure Key Vault in Your deployment - dynamic
"resources": [{ "name": "nestedTemplate", "type": "Microsoft.Resources/deployments", "properties": { "parameters": { "adminPassword": { "reference": { "keyVault": { "id": "[concat(resourceGroup().id,'/providers/Microsoft.KeyVault/vaults/', parameters('vaultName'))]"}, "secretName":"[parameters('secretName')]"}}}}}],
19
Demo Emil Wasilewski 12/29/2018 1:43 PM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
20
Azure Key Vault in Your deployment - VSTS
21
Azure Key Vault in Your deployment - VSTS
22
Azure Key Vault in Your deployment - VSTS
23
Azure Key Vault in Your deployment - VSTS
24
Azure Key Vault in Your deployment - VSTS
25
Azure Key Vault in Your deployment - VSTS
26
“Use Azure Key Vault wherever possible to keep your passwords secure”
27
Emil Wasilewski @WasilewskiEmil
28
Please evaluate this session
Tech Ready 15 12/29/2018 Please evaluate this session From your Please expand notes window at bottom of slide and read. Then Delete this text box. PC or tablet: visit MyIgnite Phone: download and use the Microsoft Ignite mobile app Your input is important! © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
29
12/29/2018 1:43 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Similar presentations
© 2025 SlidePlayer.com. Inc.
All rights reserved.