ACI and secrets

- [Instructor] The Azure container instance … implements secret management … with the secret volume that makes sure … that your data stored as secrets is secure and accessible … only by the containers in your container group. … Secrets are stored in the RAM memory … of the node hosting your container group. … Secrets stored in a container group are always read only. … When you create your Azure container instance application … in Azure CLI, you can add secrets … with the secrets parameter. … You also need to define secret mount paths. … The secrets are then stored in a secret volume … and mounted to be accessible by your container … as files in the file system. … For more complex deployments, … you shall choose YML templates. … Rather than storing connections strings, credentials, … or other secrets in your application or infrastructure code, … Microsoft recommends you to use … managed identities for Azure resources. … With managed identities Azure container instances … will automatically get an identity provisioned for them …