Why do we need to create application in azure active directory before creating azure key vault?

Before creating a key vault it needs me to create an application Active Directory. Why do we need it? It's not even my actual application (i.e. I have not uploaded my app to Azure but using secrets from the key vault only in my visual studio web application). I still don't understand that part.

1 answer

  • answered 2018-11-08 07:26 Joy Wang

    If you want to access the keyvault, you need a service principal which has been added in the access policy in the keyvault, registering app will create the service principal. The AAD App is different from the application in VS, the AAD App represents your permission to access the keyvault.