Have you failed a job interview?
Send us your job interview questions and get correct answers.

You want to deploy resources using ARM template. You need to make sure that IT operators who are responsible for deployments won't have access to the Azure Key Vault secrets directly. How will you achieve this?

Experience Level: Senior
Tags: Azure CloudAzure Key Vault

Answer

From Access policies in Key Vault, enable access to the Azure Resource Manager for template deployment.

Then assign the IT operators a custom role that includes the Microsoft.KeyVault/Vaults/Deploy/Action permission.

This will follow the principle of least privilege.
Related Azure Cloud job interview questions

Comments

No Comments Yet.
Be the first to tell us what you think.
Azure Key Vault
Azure Key Vault

Are you learning Azure Cloud ? Try our test we designed to help you progress faster.

Test yourself
AZ-304 Microsoft Azure Architect Design Preparation
AZ-304 Microsoft Azure Architect Design Preparation

Are you learning Azure Cloud ? Try our test we designed to help you progress faster.

Test yourself