Key Vaults should use RBAC instead of access policies for access control

microsoft / AzureTRE

An accelerator to help organizations build Trusted Research Environments on Azure.

https://microsoft.github.io/AzureTRE

MIT License

182 stars 139 forks source link

Key Vaults should use RBAC instead of access policies for access control #4000

Open SvenAelterman opened 3 months ago

SvenAelterman commented 3 months ago

Description

As a TRE Administrator I want to use the recommended configurations for Azure resources So that feature deprecations, etc. won't affect a production environment

Acceptance criteria

[ ] Key Vaults deployed by TRE use Azure RBAC for access control
[ ] A migration path is documented for existing TRE instances