You are viewing an earlier version of the admin guide. For the latest version, please visit EmpowerID Admin Guide v7.211.0.0.

Setting up the Vault

Owned by Phillip Hanegan
Aug 21, 2023
2 min read

To securely store and access secrets for the EmpowerID bot, we will use the Azure Key Vault. You can set up the vault, provide access, enable System-managed Identity, and set permissions by following these steps.

  1. Navigate to the Azure portal.

  2. Please create a new Azure Key Vault in azure if one already does not exist.

  3. After you create the resource, you can find the Vault URL. Set the KeyVaultUrl to the Azure Vault URL in the App Service application settings of the Web App created in Step #1

     

     

  4. Enable System-managed Identity on the App Service. Navigate to the web app created in step #1, Select Identity, and switch Status to On within the System assigned tab. Click Save.

     

     

  5. Add an Access Policy to give the System-managed Identity permission to access the vault.


     

  6. Choose Get, List, Set, Delete & Recover rights for the secret permissions for the access policy. And Choose Get, List for certificate permission. Click on save to store the permissions.





    Please select the app service you have created in step #1 as the Principal input.

In the next step, we will create Azure Cache for Redis

All steps in Deployment & Configuration of EID Bot