Two new Azure Key Vault features (October 2020)

Microsoft has just released two new features for Azure Key Vault:

1. RBAC (role-based access control) support for Azure Key Vault data plane authorization

It is now possible to use newly introduced RBAC rules to control access to your Key Vault data. The new roles include, among others: “Key Vault Reader” (read metadata about secrets, certificated, etc.) and “Key Vault User” (read the contents of the actual secrets).

Read more about this in the Azure documentation pages.

2. Azure Key Vault integration with Event Grid

Key Vault can now publish events to Azure Event Grid as a first-party publisher. A great use case is that a subscriber (e.g., a Function or a Logic App) can receive an event when a certificate is about to expire!

Read more about this in the Azure documentation pages.

 

Both of these new features are in public preview.

1