Create Key Vault with logging

Stephane Lapointe 提供
上次更新日期: 2017/2/15

This template creates a Key Vault and a storage account that is used for logging. It optionally creates resource locks to protect your Key Vault and storage resources.

此 Azure Resource Manager (ARM) 範本是由社群成員 (而非 Microsoft) 建立。每個 ARM 範本都是由其擁有者 (而非 Microsoft) 依據授權合約授權給您。Microsoft 並不負責社群成員所提供和授權的 ARM 範本,而不會為了安全性、相容性或效能進行篩選。社群 ARM 範本並未依據任何 Microsoft 支援方案或服務提供支援,而且會在沒有任何擔保的情況下依現況提供。

參數

參數名稱 說明
keyVaultName KeyVault name
accessPolicies Access policies object {"tenantId":"","objectId":"","permissions":{"keys":[""],"secrets":[""]}}
logsRetentionInDays Specifies the number of days that logs are gonna be kept. If you do not want to apply any retention policy and retain data forever, set value to 0.
enableVaultForDeployment Specifies if the vault is enabled for deployment by script or compute (VM, Service Fabric, ...)
enableVaultForTemplateDeployment Specifies if the vault is enabled for a template deployment
enableVaultForDiskEncryption Specifies if the azure platform has access to the vault for enabling disk encryption scenarios.
vaultSku Specifies the SKU for the vault
protectWithLocks (沒有可用的說明)

使用範本

PowerShell

New-AzureRmResourceGroupDeployment -Name <deployment-name> -ResourceGroupName <resource-group-name> -TemplateUri https://raw.githubusercontent.com/azure/azure-quickstart-templates/master/201-key-vault-with-logging-create/azuredeploy.json
安裝和設定 Azure PowerShell

命令列

azure config mode arm
azure group deployment create <my-resource-group> <my-deployment-name> --template-uri https://raw.githubusercontent.com/azure/azure-quickstart-templates/master/201-key-vault-with-logging-create/azuredeploy.json
安裝和設定 Azure 跨平台命令列介面