Skip to content

Commit 229d1b3

Browse files
jackrichinsjackrichins
authored
Reorder for easier flow
1 parent 2f9f096 commit 229d1b3

File tree

1 file changed

+25
-25
lines changed

1 file changed

+25
-25
lines changed

articles/key-vault/general/about-keys-secrets-certificates.md

Lines changed: 25 additions & 25 deletions
Original file line numberDiff line numberDiff line change
@@ -16,6 +16,31 @@ ms.author: mbaldwin
1616

1717
Azure Key Vault enables Microsoft Azure applications and users to store and use several types of secret/key data. Key Vault resource provider supports two resource types: vaults and managed HSMs.
1818

19+
## Object Identifiers
20+
Objects are uniquely identified within Key Vault using a case-insensitive identifier called the Object Identifier. No two objects in the system have the same identifier, regardless of geo-location. The identifier consists of a prefix that identifies the Key Vault, object type, user provided Object Name, and an Object Version. Identifiers that don't include the Object Version are referred to as Base Identifiers. Key Vault Object Identifiers are also valid URL but should always be compared as case-insensitive strings.
21+
22+
For more information, see [Authentication, requests, and responses](authentication-requests-and-responses.md)
23+
24+
An object identifier has the following general format (depending on container type):
25+
26+
- **For Vaults**:
27+
`https://{vault-name}.vault.azure.net/{object-type}/{object-name}/{object-version}`
28+
29+
- **For Managed HSM pools**:
30+
`https://{hsm-name}.managedhsm.azure.net/{object-type}/{object-name}/{object-version}`
31+
32+
> [!NOTE]
33+
> See [Object type support](#object-types) for types of objects supported by each container type.
34+
35+
Where:
36+
37+
| Element | Description |
38+
|-|-|
39+
|`vault-name` or `hsm-name`|The name for a vault or a Managed HSM pool in the Microsoft Azure Key Vault service.<br /><br />Vault names and Managed HSM pool names are selected by the user and are globally unique.<br /><br />Vault name and Managed HSM pool name must be a 3-24 character string, containing only 0-9, a-z, A-Z, and not consecutive -.|
40+
|`object-type`|The type of the object, "keys", "secrets", or 'certificates'.|
41+
|`object-name`|An `object-name` is a user provided name for and must be unique within a Key Vault. The name must be a 1-127 character string, starting with a letter and containing only 0-9, a-z, A-Z, and -.|
42+
|`object-version`|An `object-version` is a system-generated, 32 character string identifier that is optionally used to address a unique version of an object.|
43+
1944
## DNS suffixes for object identifiers
2045
This table shows the DNS suffix used by the data-plane endpoint for vaults and managed HSM pools in various cloud environments.
2146

@@ -70,31 +95,6 @@ Objects in Key Vault can be retrieved by specifying a version or by omitting ver
7095
> [!NOTE]
7196
> The values you provide for Azure resources or object IDs may be copied globally for the purpose of running the service. The value provided should not include personally identifiable or sensitive information.
7297
73-
### Vault-name and Object-name
74-
Objects are uniquely identified within Key Vault using a case-insensitive identifier called the Object Identifier. No two objects in the system have the same identifier, regardless of geo-location. The identifier consists of a prefix that identifies the Key Vault, object type, user provided Object Name, and an Object Version. Identifiers that don't include the Object Version are referred to as Base Identifiers. Key Vault Object Identifiers are also valid URL but should always be compared as case-insensitive strings.
75-
76-
For more information, see [Authentication, requests, and responses](authentication-requests-and-responses.md)
77-
78-
An object identifier has the following general format (depending on container type):
79-
80-
- **For Vaults**:
81-
`https://{vault-name}.vault.azure.net/{object-type}/{object-name}/{object-version}`
82-
83-
- **For Managed HSM pools**:
84-
`https://{hsm-name}.managedhsm.azure.net/{object-type}/{object-name}/{object-version}`
85-
86-
> [!NOTE]
87-
> See [Object type support](#object-types) for types of objects supported by each container type.
88-
89-
Where:
90-
91-
| Element | Description |
92-
|-|-|
93-
|`vault-name` or `hsm-name`|The name for a vault or a Managed HSM pool in the Microsoft Azure Key Vault service.<br /><br />Vault names and Managed HSM pool names are selected by the user and are globally unique.<br /><br />Vault name and Managed HSM pool name must be a 3-24 character string, containing only 0-9, a-z, A-Z, and not consecutive -.|
94-
|`object-type`|The type of the object, "keys", "secrets", or 'certificates'.|
95-
|`object-name`|An `object-name` is a user provided name for and must be unique within a Key Vault. The name must be a 1-127 character string, starting with a letter and containing only 0-9, a-z, A-Z, and -.|
96-
|`object-version`|An `object-version` is a system-generated, 32 character string identifier that is optionally used to address a unique version of an object.|
97-
9898
## Next steps
9999

100100
- [About keys](../keys/about-keys.md)

0 commit comments

Comments
 (0)