What is the difference between a key and a secret in Azure Key Vault?
Note: As we migrate from MSDN, this question has been posted by an Azure Cloud Engineer as a frequently asked question
Source: Key Vault
What is the difference between a key and a secret in Azure Key Vault?
Note: As we migrate from MSDN, this question has been posted by an Azure Cloud Engineer as a frequently asked question
Source: Key Vault
A secret is anything that you want to tightly control access to, such as API keys, passwords, or certificates.
A key is a cryptographic key represented as a JSON Web Key [JWK] object. Key Vault supports RSA and Elliptic Curve Keys only.
Source: Key Vault
Also one important difference, is that a Key can never leave the Key-Vault boundary. Even the owner of the key vault cannot see or retrieve the clear "key". However, that is not the case with "secrets".
5 people are following this question.
Will Microsoft see my keys in Azure Key Vault?
What are the different ways to authenticate to Azure Key Vault?
What are Azure Key Vault's soft-delete and purge protection features?
What is the limit of number of key vaults per subscription?
How do I decide whether to use Azure Key Vault or Azure Dedicated HSM?