Layer 7 API Management

Expand all | Collapse all

Azure Key Vault with CA API Gateway

Jump to Best Answer
  • 1.  Azure Key Vault with CA API Gateway

    Posted 08-12-2019 05:16 PM
    Do you know a way to use "Azure Key Vault" instead of "Manage Stored Passwords" in CA API Gateway?

    The main idea is store some keys in a centralized place (AZ key vault), in order to share with other systems, and use in gateway assertions (eg Encode JWT > JWS > Secret ).


  • 2.  RE: Azure Key Vault with CA API Gateway

    Posted 08-13-2019 07:51 AM
    Maybe implement in devops the feature do get key in Azure Key Vault and update the password in "Manage Stored Password" using GMU ... Is it possible? What do you think about?


  • 3.  RE: Azure Key Vault with CA API Gateway
    Best Answer

    Posted 08-14-2019 09:48 AM
    Edited by Leandro Dantas 08-20-2019 05:10 PM
    Hi.

    I didn't work with Azure Key Vault yet but as far as I understand from Azure docs, it has a Rest API which you can use to build a policy to retrieve the value needed .
    https://docs.microsoft.com/en-us/rest/api/keyvault/

    And yes, you can use GMU restman command to manipulate the passoword store.
    The restman documentation can be accessed from your gateway instance:
    https://<gateway-server>/restman/1.0/doc/restDoc.html#1.0/passwords
    Login with some administrator user from Policy Manager

    ------------------------------
    Sr. Consultant Services
    HCL Enterprise Studio
    ------------------------------