Azure ARM tempate - Key Vault with creating empty/default secrets

Question

I'm deploying an Azure Key Vault with a list of secrets. To achieve this, I used this quickstart-template.

This seems to work fine, but has some problems:

1. The secret-value (provided in the parameters.json) is overwritten on each deploy
2. I only want to create the secret, so an admin-user can provide the value for it. But removing the Value from the Properties-section leads to an error BadRequest / An invalid value was provided for 'value'.

The second issue is registered on github, but has anyone found a workaround for this issue?

Answer 1

I'd suggest looking at the API docs, not at the template reference (because its garbage). Here it says that the value is required.

So this is expected. it is not a bug.

Having said that, this means you need some other way of managing secrets in Azure Key Vault