Secret Manager
The initial deployment stores the key used to encrypt secrets in Cado locally on the machine. Enabling a Secret Manager allows Cado to instead store the key in Azure Key Vault.
Prerequisites
- Ability to create a Key Vault
- Ability to update Role Assignments
Steps
- In the resource group click Create and search for “Key Vault” and select “Key Vault”
- Add a Key vault name
- Set Access Configuration to “Vault access policy”
- On “Access policies” search for “cado-identity” and select. Confirm the Client ID is the correct one.
- Go to the created resource. Copy the “Vault URI”
- Enable in the UI: Settings > Advanced > Secret Management > Turn on Secrets Manager