Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Documentation update for Azure Key Vault Task #5037

Merged
merged 2 commits into from
Jan 31, 2018
Merged

Documentation update for Azure Key Vault Task #5037

merged 2 commits into from
Jan 31, 2018

Conversation

degant
Copy link
Contributor

@degant degant commented Aug 16, 2017

  • General Formatting and Code formatting (wherever required)
  • Updating Secrets to Secrets + Certificates since Azure KV now provides access policies for both separately

@degant
Documentation update for Azure Key Vault Task
eac09aa 
- General Formatting and Code formatting (wherever required)
- Updating Secrets to Secrets + Certificates since Azure KV now provides access policies for both separately
@microsoft microsoft deleted a comment from msftclas Sep 27, 2017
@bryanmacfarlane
Copy link
Contributor

take or close

@kmkumaran kmkumaran requested a review from Lovakumar November 13, 2017 14:37
Lovakumar
Lovakumar suggested changes Nov 21, 2017
View reviewed changes
Tasks/AzureKeyVault/README.md Outdated

### Parameters of the task:

The parameters of the task are described below. The parameters listed with a \* are required parameters for the task:

* **Azure Subscription**\*: Select the service endpoint for the Azure Subscription where the Azure Key vault instance is created. To configure new service endpoint, select the Azure subscription from the list and click 'Authorize'. If your subscription is not listed or if you want to use an existing Service Principal, you can setup an Azure service connection using 'Manage' link.

Ensure the Azure endpoint has at least Get and List permissions on the vault. You can set these permissions in the Azure portal:
Open the Settings blade for the vault, choose Access policies, then Add new.In the Add access policy blade, choose Select principal and select the service principal for your client account.In the Add access policy blade, choose Secret permissions and ensure that Get and List are checked (ticked). Choose OK to save the changes.
Ensure the Azure endpoint has at least Get and List permissions for Secrets and Certificate Management on the vault. You can set these permissions in the Azure portal: Open the Settings blade for the vault, choose Access policies, then Add new. In the Add access policy blade, choose Select principal and select the service principal for your client account. In the Add access policy blade, choose `Secret permissions` and `Certificate permissions` and ensure that Get and List are checked (ticked) for both. Choose OK to save the changes.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This task handles only Secrets construct of Azure Key Vault. Azure has introduced Certificates construct recently hence we should not add certificates yet.

Tasks/AzureKeyVault/README.md Outdated

### Parameters of the task:

The parameters of the task are described below. The parameters listed with a \* are required parameters for the task:

* **Azure Subscription**\*: Select the service endpoint for the Azure Subscription where the Azure Key vault instance is created. To configure new service endpoint, select the Azure subscription from the list and click 'Authorize'. If your subscription is not listed or if you want to use an existing Service Principal, you can setup an Azure service connection using 'Manage' link.

Ensure the Azure endpoint has at least Get and List permissions on the vault. You can set these permissions in the Azure portal:
Open the Settings blade for the vault, choose Access policies, then Add new.In the Add access policy blade, choose Select principal and select the service principal for your client account.In the Add access policy blade, choose Secret permissions and ensure that Get and List are checked (ticked). Choose OK to save the changes.
Ensure the Azure endpoint has at least Get and List permissions for Secrets and Certificate Management on the vault. You can set these permissions in the Azure portal: Open the Settings blade for the vault, choose Access policies, then Add new. In the Add access policy blade, choose Select principal and select the service principal for your client account. In the Add access policy blade, choose `Secret permissions` and `Certificate permissions` and ensure that Get and List are checked (ticked) for both. Choose OK to save the changes.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Remove Certificate permissions

@bansalaseem
Copy link
Contributor

@degant, @Lovakumar Can one of you please make the change that lova has requested?

@Lovakumar Lovakumar merged commit de4c87a into microsoft:master Jan 31, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Lovakumar Lovakumar Lovakumar approved these changes

Assignees

@bansalaseem bansalaseem

Labels
Area: Release
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@degant @bryanmacfarlane @bansalaseem @Lovakumar @msftclas @msftgits