Creating a client secret in Azure Active Directory

  1. Navigate to Azure > Azure Active Directory > App Registrations > <the BYOK application> > Certificates & Secrets.

  2. Select New client secret to create the client secret.

    Add the description and set the expiration period. The recommended period is 24 months.

    You will have to update the secret in KeyControl before the expiration date you set here to have uninterrupted access to Azure Key vaults from KeyControl.

  3. Copy the Value of the new client secret.

    This value is displayed in Azure Portal only temporarily. When the portal hides it, you cannot get it back and you will have to create a new client secret.