cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Azure Key Vault, what is the best practice when accessing is from Power Platform?

AlanBinHu
Copper Contributor

‎Mar 21 2023 06:14 PM

‎Mar 21 2023 06:14 PM

Azure Key Vault, what is the best practice when accessing is from Power Platform?

Whenever we think about storing secrets, keys securely we use Azure Key Vault, but by default the key vaults are accessible from Internet, and when the client app is built in Power Platform there isn't a way to secure the Azure Key Vault with private endpoint, virtual networking, or firewall. So apart from the usual access policies, monitoring, and alerts, what other defence mechanisms we can utilize to prevent snooping eyes?

 

The trusted Microsoft Services list does not include Power Platform, as expected.

706 Views
0 Likes
1 Reply
Reply
1 Reply
AlanBinHu

‎Mar 23 2023 09:15 PM

‎Mar 23 2023 09:15 PM

Re: Azure Key Vault, what is the best practice when accessing is from Power Platform?

Just to close the loop, in the end I added the IP ranges from which Power Platform connectors will be connecting in my geography regions. Not ideal, hope in the future the Key Vault firewall supports Service Tags. Tested and everything works.
0 Likes
Reply