platform

Managed Identities

Managed Identities (formerly known as Managed Service Identity or MSI) is an Azure feature that provides an automatically managed identity for Azure resources, such as virtual machines, apps, or functions, to authenticate to Azure services like Azure Key Vault, SQL Database, or Storage without storing credentials in code. It eliminates the need for developers to manage secrets, keys, or certificates by leveraging Azure Active Directory (Azure AD) for secure, token-based authentication. This simplifies security management and reduces the risk of credential exposure in applications.

Also known as: Managed Service Identity, MSI, Azure Managed Identities, System-Assigned Managed Identity, User-Assigned Managed Identity
🧊Why learn Managed Identities?

Developers should use Managed Identities when building cloud-native applications on Azure that require secure access to other Azure services, as it automates credential management and enhances security by avoiding hard-coded secrets. It is particularly useful for scenarios like accessing Azure Key Vault for secrets, connecting to Azure SQL Database from an app service, or allowing a virtual machine to interact with Azure Storage, ensuring compliance and reducing operational overhead in DevOps pipelines.

Compare Managed Identities

Managed Identities vs Service PrincipalsManaged Identities vs Shared Access SignaturesManaged Identities vs Connection Strings

Learning Resources

📄
Azure Managed Identities documentation
docs
📝
Tutorial: Use a managed identity to connect Key Vault to an Azure web app
tutorial
🎓
Managed Identities for Azure Resources - Microsoft Learn module
course
🎬
Azure Friday: Managed Identities for Azure Resources
video

Related Tools

Azure Active DirectoryAzure Key VaultAzure App ServiceAzure FunctionsAzure Virtual Machines

Alternatives to Managed Identities

Service PrincipalsShared Access SignaturesConnection Strings