Skip to content

API Secrets

When you onboard your api in Api Management and your backend doesn't use LKAB Azure AD for authentication you may have to add som api specific secrets for your backend. This can be done by hosting a Azure Key vault. You will become Contributor in that specific key vault and can administrate your own secrets there.

Azure key vaults

To be able to host a key vault for your api you must specify which LKAB Azure Account who will be administrating the secrets in that key vault. This infromation will then be used when deploying of a key vault for your api.

Whitelist your IP

When the key vault has been deployed you can reach it by:
https://portal.azure.com/#@lkabonline.onmicrosoft.com/resource/subscriptions/8c26b801-c87d-4bbb-95e4-a080e078d4fb/resourceGroups/rg-kv-prod-weu-001-lkab/providers/Microsoft.KeyVault/vaults/{YOUR-KEYVAULT-IDENTIFIER}/overview

Before you can add your secrets you have to whitelist your IP.

Whitelist IP

Then you can add your secrets.

Whitelist IP
Whitelist IP

We recommend that you set a expiration date to get a reminder to rotate your secrets. The reminder will be a notification to the API Management teams channel.