To securely store and access secrets for the EmpowerID bot, we will use the Azure Key Vault. You can set up the vault, provide access, enable System-managed Identity, and set permissions by following these steps.
...
Navigate to the Azure portal.
Create a new Azure Key Vault in azure if one already does not exist.
After you create the resource, you can find the Vault URL. Set the KeyVaultUrl to the Azure Vault URL in the App Service application settings of the Web App created in Step #1 Set up App Service
Enable System-managed Identity on theApp Service. Navigate to the web app created in step #1, Select IdentitySelect Identity, Within the System assigned tab, switch Status to On. Click Save.
Add an Access Policy to give the System-managed Identity permission to access the vault.
the System assigned tab, switch Status to On. Click Save.
Add an Access Policy to give the System-managed Identitypermission to access the vault.
Choose Get, List, Set, Delete & Recover rights for the secret permissions for the access policy. And Choose Get, List for certificate permission. Click on save to store the permissions.
Please select the app service you have created in step #1 Set up App Service as the Principal input.
...