Host HashiCorp Vault in Azure App Services

Question

Is it possible to host/deploy HashiCorp Vault on MS Azure App Services so that I can create, read, update and delete Vault secrets from my apps deployed on Azure App Services?

I can't find any documentation. I only know that I can host it on Windows virtual machine on-prem.

Answer 1

That's seems doable. I could think of a few options (#1 is specifically for AppServices as you have asked)

1. HashiCorpVault -> Docker -> App Service: I'm assuming you are familiar with Docker which is required for this step. You can create a container locally and deploy on AppService.

• To do this, create a docker file and as a part of the build use brew to download Vault.
• You will need to create your dockerfile in multi-steps to have Node and brew installed first.
• Once that's done, the next step in build process is to get HashiCorp vault via brew https://www.vaultproject.io/downloads.
• Alternatively, you could download the packages on your machine using brew, and then package your container.
• You can run your container locally, make any configuration changes you prefer and create image once you are ready.
• Once you have your image on your preferred repository, you could follow the Microsoft guide to deploy: https://learn.microsoft.com/en-us/learn/modules/deploy-run-container-app-service/

2. HashiCorp Integration with Azure: It can be integrated with Azure https://www.hashicorp.com/integrations/microsoft and ready to be used at scale.