Create an Azure Key Vault

Azure Key Vault is a cloud service provided by Microsoft Azure. It acts as a centralized repository for securely storing and managing cryptographic keys, certificates, and secrets, helping you safeguard and control access to sensitive information.

Take note of the following information if you selected Certificate in Azure Key Vault type of secret to use for authentication. You will need them later when you Configure Microsoft Entra ID as an IDP in N-central :

Vault Name: In the example, this is Contoso-Vault2. You will use this name for other steps.

Vault URL: In the example, this is https://contoso-vault2.vault.azure.net/. Applications that use your vault through its REST API must use this URI.

1. Log in to the Azure portal.

2. From the Azure portal menu, or from the Home page, select Create a resource.

3. In the Search box, enter Key Vault.

4. From the results list, choose Key Vault.

5. In the Key Vault section, choose Create.

6. In the Create key vault section, provide the following information:

   1. Name: A unique name is required. For this quickstart, we use Contoso-vault2.

   2. Subscription: Choose a subscription.

   3. Under Resource Group, choose Create new and enter a resource group name.

   4. In the Location menu, choose a location.

   5. Leave the other options to their defaults.

7. Select Create.

At this point, your Azure account is the only one authorized to perform operations on this new vault.