Creating Dynamic Azure Service Principals for Terraform with HashiCorp Vault

Azure + Terraform + Vault

Everyone knows, static secrets are bad and regularly rotating them is a must. But what’s better then rotated static secrets? Right, dynamic access! And that’s were Vault from HashiCorp comes in. What is Vault? Vault is a cloud native secret management solution from HashiCorp. It tightly controls access to secrets and encryption keys by authenticating …

Read more

Azure AD Passwordless Sign-In with FIDO2 Security Keys

Yubikey 5 NFC

In this post I want to show you, how to use the Azure AD passwordless sign-in with FIDO2 security keys, such as Yubikeys. When using Yubikeys, make sure you are using a Yubikey 5, as Yubikey 4 only supports FIDO U2F, which is not supported for passwordless sign-in. Go to the Azure AD Authentication methods …

Read more