AZ-400 - Develop a Security and Compliance Plan - Section 4.2
Design and implement a strategy for managing sensitive information in automation, including Azure Key Vault, secretless authentication, and workload identity federation.
Implement secret management in pipelines using Azure Key Vault references and Azure Pipelines secure files to keep credentials out of YAML definitions. Apply workload identity federation via OpenID Connect to allow pipelines to authenticate to Azure without storing long-lived secrets, and understand when each approach is the right fit.
Azure Key Vaultworkload identity federationOpenID ConnectAzure Pipelines secure filessecret management
More in this domain
Back to all Develop a Security and Compliance Plan objectives, or the AZ-400 cert hub.
Examworthy is not affiliated with or endorsed by Microsoft. Original, blueprint-aligned practice material only.