Managing KeyVault secrets

You can retrieve keyvault secrets from the KeyVault file.

You can retrieve secrets in the KeyVault with the following command.
sudo resutil keyvaultget -name <secret name>

Similarly, you can save secrets to the KeyVault with the following command.

sudo resutil keyvaultset -name <secret name> -stdin <secret value>
Ctrl+D (to send an EOF signal to standard input)

The following table lists the secrets that you can retrieve from or save to the KeyVault.

Secret Description
cacerts Password protecting the CA certs keystore.
custcerts Password protecting the custcerts keystore.
jms_file Password protecting the embedded broker keystore.
jms_key Embedded broker's password.
proxy Proxy password.
keystore Tomcat web server certificate's password.