PowerShell
PowerShell
Azure Key Vault - Setup Bootstrap Secret in Local Manager
See more Secrets Examples
Accessing a cloud-based secrets manager requires authentication credentials, which cannot be stored in the manager itself. Instead, they must be securely stored locally.One solution is to store the authentication credentials as a secret in the Windows Credentials Manager or Apple Keychain. These credentials serve as the "bootstrap secret" for authenticating with the cloud-based secrets manager.
This example demonstrates how to setup a bootstrap secret for the Azure Key Vault.
Note: This example requires Chilkat v10.1.0 or later.
Chilkat PowerShell Downloads
Add-Type -Path "C:\chilkat\ChilkatDotNet47-x64\ChilkatDotNet47.dll"
$success = $false
# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.
$bootstrap = New-Object Chilkat.Secrets
# We're going to store the bootstrap secret in the local manager.
# On Windows, this is the Windows Credentials Manager
# On MacOS/iOS, it is the Apple Keychain
$bootstrap.Location = "local_manager"
# Specify the name of the bootstrap secret.
# service and username are required.
# appName and domain are optional.
# Note: The values are arbitrary and can be anything you want.
$json = New-Object Chilkat.JsonObject
$json.UpdateString("appName","azure_bs")
$json.UpdateString("service","Example")
$json.UpdateString("username","Joe")
# The bootstrap secret for the Azure Key Vault will contain
# the tenant_id, client_id, and client_secret, like this:
$jsonSecret = New-Object Chilkat.JsonObject
# Modify to your values.
$jsonSecret.UpdateString("tenant_id","YOUR_TENANT_ID")
$jsonSecret.UpdateString("client_id","YOUR_CLIENT_ID")
$jsonSecret.UpdateString("client_secret","YOUR_CLIENT_SECRET")
# Create or update the bootstrap secret.
$success = $bootstrap.UpdateSecretJson($json,$jsonSecret)
if ($success -eq $false) {
$($bootstrap.LastErrorText)
exit
}
$("The Azure bootstrap secret has been stored.")