Thank you Sreenivas. Glad this helped you. Here are some of my popular series twitter.com/rahulpnath/status/1499626419357630466?s=20&t=-jrWULXvhBW7io3aw8Cwiw

Happy to hear that and thank you for letting know!

Thank you very much!

Can you check if the below post and video helps you Video - kzfaq.info/get/bejne/bNKPntOqzLWUeZc.html Blog post - www.rahulpnath.com/blog/connect_net_core_to_azure_key_vault_in_ten_minutes/ Let know if you need any further help there

@@RahulNath Thanks. In the end I managed to do it using the package azure.extensions.aspnetcore.configuration.secrets

Looks like this is still work in progress. Here are two associated tickets github.com/Azure/azure-sdk-for-net/issues/8948 github.com/Azure/azure-sdk-for-net/pull/18906 It was pointed out to me by someone on twitter (twitter.com/gmantri/status/1402503825211072516) Hope that helps you!

it’s available here and the blog www.rahulpnath.com/blog/azure-managed-service-identity-and-local-development/

You might be right. Does the Portal allow you to select and assign permissions for the Managed Identity principal? It didn't have the functionality earlier.

Hope you resolved this issue Riyaz

For requests happening on behalf of the server the credentials will get passed along. When you say blazor are you connecting to a different resource from the client side? I haven't tried this from IIS - Are you hosting it on a VM?

@@RahulNath thanks Rahul , yes it’s hybrid. my apps will be hosted in on-Prem VM but we use Azure AD and KeyVault, My main goal is to connect to Key Vault via managed identity so that settings.Json can be free of any plain text credentials or client secrets.

@@vvijayar This link should be a good start docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/services-support-managed-identities Let me know if that helps

Haven't used this recently - Did you find a solution for it?

Yes user needs to be in the AD - What scenario are you looking to use this for?

Can you make sure you Visual Studio is connect to the correct Azure AD. It's there in the options. Let me know in case you are still having an issue.

Hard to tell that Ben. I don't have a 2017 version now. Did you check if there are any Azure extensions that needs to be installed? What are you trying to do from Visual Studio and Azure? Maybe you could try using the portal directly.

@@RahulNath I was following your 'Connect .Net Core to Azure Key Vault in Ten Minutes', and for the DefaultAzureCredential stuff to work I thought you had to sign into Azure from visual studio so it can cache your login? which was why I was trying to find the option to sign into azure under Tools -> Options, but maybe I have this wrong?

​@@SirBenJamin_ I am not sure about VS 2017. Is it the 'Azure Service Authentication' option that you are looking for that I show here kzfaq.info/get/bejne/faeTedGftd6rn6s.html If that does not work, I explore different options to set up a local dev environment in that video using MI. Let me know if any of that helps.

@@RahulNath thanks, I'll take a look!

@@SirBenJamin_ Let know how that goes.

Thank you Jasmine. Glad you are liking the videos. The SDK's should be accessing them via an API so it should be possible. This link does talk about it. docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/how-to-use-vm-token#get-a-token-using-http Does that help you? You could also try using azure cli docs.microsoft.com/en-us/cli/azure/identity?view=azure-cli-latest Let me know if you have additional questions.

@@RahulNath Thank you very much. I have tried them. But I want to assign blueprint before creating a vm. Do I need a vm for authentication against api?

@@yyassaman74 Can you provide more details on what you are trying to do?

@@RahulNath I have to assign a blueprint via Rest API (docs.microsoft.com/en-us/rest/api/blueprints/assignments/create-or-update#assignment-with-user-assigned-managed-identity-at-subscription-scope) How can I get token with managed identity? Managed Identity is like below: { "id": "/subscriptions/xxx-xxx-xxx/resourcegroups/xxxx/providers/Microsoft.ManagedIdentity/userAssignedIdentities/xxx", "name": "xxx", "type": "Microsoft.ManagedIdentity/userAssignedIdentities", "location": "westeurope", "tags": {}, "properties": { "tenantId": "xxx", "principalId": "xxx", "clientId": "xxx" } } The enterprise app that created with managed identity hasn't any client secret. How can I get token for assign the the blueprint via api?

Thank you - Can you explain your scenario a bit more and the problem you are trying to solve?

@@RahulNath Thanks again for quick help . Scenario When a request is initiated by the client to access a resource through azure API Gateway follow should happen. When a request is initiated it should come to azure API Gateway and then gateway will fetch the token which is sent by client and retrieve details like application I'd and scope from it and then it should call the keyvault vault service and for sake of authentication it should call the token service and then get the token and pass to keyvault for authentication and get the secret .Any suggestions or help to implement it

And this token service generally runs on vm as it is assigned as identity managed entity