AzureKeyVault

Introduction

Azure Key Vault Integration in Robility is a feature that enhances the security and compliance of automation workflows. By incorporating Azure Key Vault, ensures the secure storage and management of sensitive information, such as credentials and secrets, within a centralized and protected environment. This integration allows Robility users to securely access and manage these secrets, supporting robust security practices and compliance with industry standards in their automation tasks

Limitations

Robility’s integration with Azure Key Vault is limited to creating, retrieving, and deleting “Secrets.” Operations involving “Keys and Certificates” are not currently supported.

Pre-requisites

1. Create a resource to configure the Key vault in Azure before starting the automation with Robility. Click here to view the details.
2. Ensure the Key Vault is configured in Azure before you begin automation with Robility. Users accessing the Azure Key Vault requires specific roles:
a. Key Vault Reader: Allows reading secrets in the Key Vault.
b. Key Vault Contributor: Enables managing the Key Vault and its contents, such as adding and removing secrets.
c. Key Vault Administrator: Grants complete access, including the ability to set access policies and manage all contents.
3. To access the Azure Key Vault through software applications, your application must be registered with Azure. This registration enables secure interaction between your application and the Key Vault.

Secrets

It refers to the storage and management of sensitive data such as passwords, API keys, and connection strings, which are accessed only by authorized users.
Below is the sensitive information that can be stored and managed inside Azure Key Vault services:

1. Passwords: Secure storage of passwords for applications, databases, or services.
2. Connection Strings: Storage of connection strings for databases, APIs, or other services.
3. API Keys: Management of API keys used for accessing various services or resources.
4. Tokens: Storage of tokens used for authentication and authorization.
5. Configuration Settings: Management of sensitive configuration settings for applications.

Benefits

1. Secure Storage of Credentials: Azure Key Vault keeps your credentials like passwords and API keys in a safe, central place. This reduces the risk of them being exposed or accessed by unauthorized people.
2. Encrypted Configuration Settings: With Azure Key Vault, you can store sensitive settings securely, making sure that only authorized bots or users can access this important information.
3. Key Management for Encryption: The service simplifies managing encryption keys, helping ensure that your data stays safe and encrypted when it’s sent or stored, boosting both security and compliance.
4. Integration with Platforms: Azure Key Vault makes it easier for bot developers to access and manage the credentials and keys needed for their projects. This streamlines their workflows and cuts down on the complexity of handling sensitive information.
5. Secure Parameter Passing: When automating tasks, Azure Key Vault helps safely transmit and retrieve parameters, ensuring that your sensitive data is protected throughout the process.