Introduction
Expected Outcome
Manually and automatically renew leases in Microsoft Azure.
Manual Procedures
You should be able to renew a lease as listed here: https://www.vaultproject.io/docs/concepts/lease#lease-ids
e.g.: vault lease renew -increment=3600 my-lease-id
Here are some additional examples as listed here: https://www.vaultproject.io/docs/commands/lease/renew#examples
vault lease renew database/creds/readonly/27e1b9a1-27b8-83d9-9fe0-d99d786bdc83
You can also alternatively increase the max_lease_ttl for the Azure mount with the command:
vault write sys/mounts/azure/tune max_lease_ttl=8750h
Note: this value only applies to the Azure secrets engine.
Reference: https://learn.hashicorp.com/tutorials/vault/azure-secrets?in=vault/secrets-management
Automatic Renewals
Vault Agent will manage the lifecycle of cached tokens and leases automatically so that the clients do not need to implement a logic to renew the tokens and leases.
Reference: https://learn.hashicorp.com/tutorials/vault/agent-caching
More on the Agent here: https://www.vaultproject.io/docs/agent