Managed Identities - Azure daily #1

Managed identities for Azure resources is a feature of Azure Active Directory. The feature provides Azure services with an automatically managed identity in Azure AD. You can use the identity to authenticate to any service that supports Azure AD authentication, including Key Vault, without any credentials in your code. There are two types of managed identities:

System Assigned Managed Identity

1. Enabled on the azure service instance

2. Created as part of the resource

3. Shared lifecycle with the resource, meaning when the resource is deleted the identity is also deleted as well

4. Cannot be shared (only associated with a single resource)

User Assigned Managed Identity:

1. Created as a standalone resource

2. Has an independent life-cycle. Not dependent on the resource

3. Can be shared with multiple resources

References:

https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/overview

https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/qs-configure-portal-windows-vm

https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/how-to-use-vm-token