Wow, I was waiting for this video on how to use Python in Jupyter notebook to do basic automations. I would love much if you can create video on How to update NSG Rules using Python.
What if the service principal has contributor access on the resource group? Will that be enough or it has to be key vault Secrets User as show in the video?
If a service principal has Contributor access on the resource group, it can manage resources within that group, including creating and managing key vaults. However, to access secrets within a key vault, the service principal needs specific permissions, such as the Key Vault Secrets User role.
Bro, I need to retrive the Secret value using the SecretID, Is that possible here? what I have noticed is you get the secret Name using the secret value but thats not the use-case right? please correct me if I'm wrong here! Thanks.
I don't have the access to create service principal under the subscription I am in, is there any alternative way which won't require service principal credential?
Please check if any of the options available as mentioned in this video : ua-cam.com/video/Z4wLw33fsJI/v-deo.html If none of the options available and you are planning to deploy code on the Azure, then you can use Managed Identity.
That's a good question. Yes, we can't expose sensitive information if planning to deploy this in Production. Making this code deployable will require a set of steps and I can work on that and publish a video for the same. But, to secure Ids rather than retrieving from environment variables, I can store it in the key-vault itself and provide a generic name to the keys so that it can be retrieved. This is same like exposing keys in ConfigMap of Kubernetes or application.properties of Java/Springboot.
If you check this video in 2024 - chances are that Azure Active Directory is now listed as Microsoft Entra ID.
Yes ! I mentioned same in the Description but it is better to mention in the comment. Let me pin it.
Genio gracias, me salvaste la vida. Saludos desde Bolivia🎉
Wow, I was waiting for this video on how to use Python in Jupyter notebook to do basic automations. I would love much if you can create video on How to update NSG Rules using Python.
kamaaal
Thanks for this video! In my case, I was need to crate an access policy because I was "Denied Access"
What if the service principal has contributor access on the resource group? Will that be enough or it has to be key vault Secrets User as show in the video?
If a service principal has Contributor access on the resource group, it can manage resources within that group, including creating and managing key vaults. However, to access secrets within a key vault, the service principal needs specific permissions, such as the Key Vault Secrets User role.
Thanks for the video!
You're welcome!
Bro, I need to retrive the Secret value using the SecretID, Is that possible here? what I have noticed is you get the secret Name using the secret value but thats not the use-case right? please correct me if I'm wrong here! Thanks.
The use case is getting the secret value based on the secret name defined in the azure key vault.
I don't have the access to create service principal under the subscription I am in, is there any alternative way which won't require service principal credential?
Please check if any of the options available as mentioned in this video :
ua-cam.com/video/Z4wLw33fsJI/v-deo.html
If none of the options available and you are planning to deploy code on the Azure, then you can use Managed Identity.
Awesome
makes Databricks, with these 3 together key vault and Azure Active Directory
azure active directory is not in home, when i did a search its prompting to create one
Azure AD was the old name. You need to search for Microsoft EntraID.
how do we create a deployable code from this since we cannot save spid and key in the code
That's a good question. Yes, we can't expose sensitive information if planning to deploy this in Production. Making this code deployable will require a set of steps and I can work on that and publish a video for the same. But, to secure Ids rather than retrieving from environment variables, I can store it in the key-vault itself and provide a generic name to the keys so that it can be retrieved. This is same like exposing keys in ConfigMap of Kubernetes or application.properties of Java/Springboot.
Thank you!
anyone else getting SSL errors on execution?
Thank you so much!!!
You're welcome!
Thanks.😊