Skip to content

Powersehll

Azure

KeyVaults

Write a secret from a file

$secure = ConvertTo-SecureString (get-content .\key.txt) -AsPlainText -Force
Set-AzKeyVaultSecret -VaultName FantasticKeyVault -name awesome-key -SecretValue $secure

Write a secret from a string

This is not recommended way, because having a plain text passwords in command line is problematic from a security perspective.

$secure = ConvertTo-SecureString -String 'AwesomePassword' -AsPlainText -Force
Set-AzKeyVaultSecret -VaultName FantasticKeyVault -name awesome-key -SecretValue $secure

Backup all Secrets, Certificates and Keys

(Get-AzKeyVaultSecret -VaultName '<KEY-VAULT-NAME>').name | % -Parallel {Backup-AzKeyVaultSecret -VaultName '<KEY-VAULT-NAME>' -Name $_ -OutputFile "secret_$_.json"}
(Get-AzKeyVaultCertificate -VaultName '<KEY-VAULT-NAME>').name | % -Parallel {Backup-AzKeyVaultCertificate -VaultName '<KEY-VAULT-NAME>' -Name $_ -OutputFile "certificate_$_.json"}
(Get-AzKeyVaultKey -VaultName '<KEY-VAULT-NAME>').name | % -Parallel {Backup-AzKeyVaultKey -VaultName '<KEY-VAULT-NAME>' -Name $_ -OutputFile "key_$_.json"}