Loading source
Pulling the file list, source metadata, and syntax-aware rendering for this listing.
Source from repo
Assess and enforce Azure compliance requirements including policies, regulatory standards, and security baselines
Files
Skill
Size
Entrypoint
Format
Open file
Syntax-highlighted preview of this file as included in the skill package.
references/sdk/azure-keyvault-keys-ts.md
1# Key Vault Keys — TypeScript SDK Quick Reference2> Condensed from **azure-keyvault-keys-ts**. Full patterns (crypto operations,4> key rotation policies, backup/restore, CryptographyClient)5> in the **azure-keyvault-keys-ts** plugin skill if installed.6## Install8npm install @azure/keyvault-keys @azure/identity9## Quick Start11```typescript12import { KeyClient } from "@azure/keyvault-keys";13import { DefaultAzureCredential } from "@azure/identity";14const keyClient = new KeyClient(`https://${vaultName}.vault.azure.net`, new DefaultAzureCredential());15```16## Best Practices18- Use DefaultAzureCredential for **local development only**. In production, use ManagedIdentityCredential — see [auth-best-practices.md](../auth-best-practices.md)19- Enable soft-delete — required for production vaults20- Set expiration dates on keys21- Use key rotation policies — automate key rotation22- Limit key operations — only grant needed operations (encrypt, sign, etc.)23- Browser not supported — this SDK is Node.js only24