Managing credentials across sprawling application configurations is one of the biggest security and operational challenges facing IT Pros today. Hard-coded passwords, shared keys, connection strings, certificates, and service principals create unnecessary attack surface, complicate audits, and make it nearly impossible to maintain strong security hygiene at scale.

In this session, you’ll learn how to eliminate secret sprawl by shifting to identity-driven, zero-trust access with Azure Managed Identity and Azure Key Vault. We’ll explore how to remove secrets entirely from application code and configuration, securely authenticate workloads without credentials, and centralize secrets, certificates, and keys with robust governance and rotation policies. You’ll walk through real-world patterns for Azure VMs, App Services, Functions, containers, and automation scenarios, along with common pitfalls, migration techniques, and operational best practices.

By the end, you’ll be equipped with the practical knowledge to modernize your organization’s approach to secrets, reduce risk, and simplify operations through secure-by-default Azure platform capabilities.