{ "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#", "contentVersion": "1.0.0.0", "parameters": { "keyVaultName": { "type": "string" }, "location": { "type": "string", "defaultValue": "[resourceGroup().location]" }, "tenantId": { "type": "string", "defaultValue": "[subscription().tenantId]" }, "adUserId": { "type": "string" }, "secretName": { "type": "string", "defaultValue": "vmAdminPassword" }, "secretValue": { "type": "securestring" } }, "resources": [ { "type": "Microsoft.KeyVault/vaults", "apiVersion": "2021-06-01-preview", "name": "[parameters('keyVaultName')]", "location": "[parameters('location')]", "properties": { "enabledForDeployment": false, "enabledForTemplateDeployment": true, "enabledForDiskEncryption": false, "accessPolicies": [ { "objectId": "[parameters('adUserId')]", "tenantId": "[parameters('tenantId')]", "permissions": { "keys": [ "Get", "List", "Update", "Create", "Import", "Delete", "Recover", "Backup", "Restore" ], "secrets": [ "Get", "List", "Set", "Delete", "Recover", "Backup", "Restore" ], "certificates": [ "Get", "List", "Update", "Create", "Import", "Delete", "Recover", "Backup", "Restore", "ManageContacts", "ManageIssuers", "GetIssuers", "ListIssuers", "SetIssuers", "DeleteIssuers" ] } } ], "tenantId": "[parameters('tenantId')]", "sku": { "name": "standard", "family": "A" } } }, { "type": "Microsoft.KeyVault/vaults/secrets", "apiVersion": "2021-06-01-preview", "name": "[concat(parameters('keyVaultName'), '/', parameters('secretName'))]", "location": "[parameters('location')]", "scale": null, "dependsOn": [ "[resourceId('Microsoft.KeyVault/vaults', parameters('keyVaultName'))]" ], "properties": { "contentType": "securestring", "value": "[parameters('secretValue')]", "attributes": { "enabled": true } } } ], "outputs": { "keyVaultId": { "type": "string", "value": "[resourceId('Microsoft.KeyVault/vaults', parameters('keyVaultName'))]" } } }