Key Vault

Create secret

If you want to use azure key vault secrets within the aks cluster, you first need to add those secrets to the key vault.
To add a secret to the vault, follow the steps:

1. Navigate to your new key vault in the Azure portal .
   You can find the key vault in the resource group: rg-<environment>-<short company name>-<workload name>-aks e.g. ‘rg-prod-tls-cmaas-aks’
2. On the Key Vault settings pages, select Secrets.
3. Click on Generate/Import.
4. On the Create a secret screen choose the following values:
   • Upload options: Manual.
   • Name: Type a name for the secret. The secret name must be unique within a Key Vault. The name must be a 1-127 character string, starting with a letter and containing only 0-9, a-z, A-Z, and -. For more information on naming, see Key Vault objects, identifiers, and versioning
   • Value: Type a value for the secret. Key Vault APIs accept and return secret values as strings.
   • Leave the other values to their defaults. Click Create.

Once that you receive the message that the secret has been successfully created, you may click on it on the list.

For more information on secrets attributes, see About Azure Key Vault secrets