You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
A common challenge for developers is the management of secrets and credentials used to secure communication between different components making up a solution. Managed identities eliminate the need for developers to manage credentials.
25
25
26
-
Managed identities provide an identity for applications to use when connecting to resources that support Azure Active Directory (Azure AD) authentication. Applications may use the managed identity to obtain Azure AD tokens. For example, an application may use a managed identity to access resources like [Azure Key Vault](../../key-vault/general/overview.md). Developers can store credentials in a secure manner or access storage accounts in Key Vault.
26
+
Managed identities provide an identity for applications to use when connecting to resources that support Azure Active Directory (Azure AD) authentication. Applications may use the managed identity to obtain Azure AD tokens. With [Azure Key Vault](../../key-vault/general/overview.md), developers can use managed identities to access resources. Key Vault stores credentials in a secure manner and gives access to storage accounts.
27
27
28
-
Take a look at how you can use managed identities:</br>
28
+
The following video shows how you can use managed identities:</br>
@@ -44,8 +44,8 @@ Here are some of the benefits of using managed identities:
44
44
45
45
There are two types of managed identities:
46
46
47
-
-**System-assigned**. Some Azure services allow you to enable a managed identity directly on a service instance. When you enable a system-assigned managed identity, an identity is created in Azure AD. The identity is tied to the lifecycle of that service instance. So when the resource is deleted, Azure automatically deletes the identity for you. By design, only that Azure resource can use this identity to request tokens from Azure AD.
48
-
-**User-assigned**. You may also create a managed identity as a standalone Azure resource. You can [create a user-assigned managed identity](how-to-manage-ua-identity-portal.md) and assign it to one or more instances of an Azure service. For user-assigned managed identities, the identity is managed separately from the resources that uses it. </br></br>
47
+
-**System-assigned**. Some Azure services allow you to enable a managed identity directly on a service instance. When you enable a system-assigned managed identity, an identity is created in Azure AD. The identity is tied to the lifecycle of that service instance. When the resource is deleted, Azure automatically deletes the identity for you. By design, only that Azure resource can use this identity to request tokens from Azure AD.
48
+
-**User-assigned**. You may also create a managed identity as a standalone Azure resource. You can [create a user-assigned managed identity](how-to-manage-ua-identity-portal.md) and assign it to one or more instances of an Azure service. For user-assigned managed identities, the identity is managed separately from the resources that use it. </br></br>
49
49
50
50
51
51
The following table shows the differences between the two types of managed identities:
@@ -64,11 +64,11 @@ The following table shows the differences between the two types of managed ident
64
64
65
65
## How can I use managed identities for Azure resources?
66
66
67
-
[](media/overview/when-use-managed-identities.png#lightbox)
67
+
[](media/overview/when-use-managed-identities.png#lightbox)
68
68
69
69
## What Azure services support the feature?<aname="which-azure-services-support-managed-identity"></a>
70
70
71
-
Managed identities for Azure resources can be used to authenticate to services that support Azure AD authentication. For a list of Azure services that support the managed identities for Azure resources feature, see [Services that support managed identities for Azure resources](./services-support-managed-identities.md).
71
+
Managed identities for Azure resources can be used to authenticate to services that support Azure AD authentication. For a list of supported Azure services, see [services that support managed identities for Azure resources](./services-support-managed-identities.md).
72
72
73
73
## Which operations can I perform using managed identities?
74
74
@@ -87,7 +87,7 @@ If you choose a user assigned managed identity instead:
87
87
- CRUD operations are available for review in [Azure Activity logs](../../azure-monitor/essentials/activity-log.md).
88
88
- View sign in activity in Azure AD [sign in logs](../reports-monitoring/concept-sign-ins.md).
89
89
90
-
Operations on managed identities can be performed by using an Azure Resource Manager template, the Azure portal, the Azure CLI, PowerShell, and REST APIs.
90
+
Operations on managed identities can be performed by using an Azure Resource Manager template, the Azure portal, Azure CLI, PowerShell, and REST APIs.
0 commit comments