MicrosoftDocs
diff --git a/‎articles/key-vault/secrets/javascript-developer-guide-get-started.md‎
Lines changed: 2 additions & 2 deletions b/‎articles/key-vault/secrets/javascript-developer-guide-get-started.md‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎articles/key-vault/secrets/multiline-secrets.md‎
Lines changed: 5 additions & 5 deletions b/‎articles/key-vault/secrets/multiline-secrets.md‎
Lines changed: 5 additions & 5 deletions
diff --git a/‎articles/key-vault/secrets/overview-storage-keys-powershell.md‎
Lines changed: 14 additions & 14 deletions b/‎articles/key-vault/secrets/overview-storage-keys-powershell.md‎
Lines changed: 14 additions & 14 deletions
diff --git a/‎articles/key-vault/secrets/overview-storage-keys.md‎
Lines changed: 9 additions & 9 deletions b/‎articles/key-vault/secrets/overview-storage-keys.md‎
Lines changed: 9 additions & 9 deletions
diff --git a/‎articles/key-vault/secrets/quick-create-bicep.md‎
Lines changed: 1 addition & 1 deletion b/‎articles/key-vault/secrets/quick-create-bicep.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/key-vault/secrets/quick-create-cli.md‎
Lines changed: 4 additions & 4 deletions b/‎articles/key-vault/secrets/quick-create-cli.md‎
Lines changed: 4 additions & 4 deletions
@@ -7,7 +7,7 @@ ms.service: azure-key-vault
 ms.subservice: secrets
 ms.topic: how-to
 ms.custom: devx-track-js, devx-track-azurecli
-ms.date: 01/30/2026
+ms.date: 03/26/2026
 
 ms.author: mbaldwin
 #Customer intent: As a JavaScript developer who is new to Azure, I want to know the high level steps necessary to use Key Vault secrets in JavaScript.
@@ -102,7 +102,7 @@ import { SecretClient } from '@azure/keyvault-secrets';
 const credential = new DefaultAzureCredential(); 
 
 // Create SecretClient
-const vaultName = '<your-vault-name>';  
+const vaultName = '<vault-name>';  
 const url = `https://${vaultName}.vault.azure.net`;  
 const client = new SecretClient(url, credential);  
 
 
@@ -7,7 +7,7 @@ ms.service: azure-key-vault
 ms.subservice: secrets
 ms.topic: quickstart
 ms.custom: mvc, devx-track-azurecli, devx-track-azurepowershell, mode-other
-ms.date: 04/14/2025
+ms.date: 03/26/2026
 
 ms.author: mbaldwin
 #Customer intent: As a security admin who is new to Azure, I want to use Key Vault to securely store keys and passwords in Azure
@@ -31,12 +31,12 @@ secret
 You can then pass this file to the Azure CLI [az keyvault secret set](/cli/azure/keyvault/secret#az-keyvault-secret-set) command using the `--file` parameter.
 
 ```azurecli-interactive
-az keyvault secret set --vault-name "<your-unique-keyvault-name>" --name "MultilineSecret" --file "secretfile.txt"
+az keyvault secret set --vault-name "<vault-name>" --name "MultilineSecret" --file "secretfile.txt"
 ```
 You can then view the stored secret using the Azure CLI [az keyvault secret show](/cli/azure/keyvault/secret#az-keyvault-secret-show) command.
 
 ```azurecli-interactive
-az keyvault secret show --name "MultilineSecret" --vault-name "<your-unique-keyvault-name>" --query "value"
+az keyvault secret show --name "MultilineSecret" --vault-name "<vault-name>" --query "value"
 ```
 
 The secret will be returned with `\n` in place of newline:
@@ -59,13 +59,13 @@ $SecureSecret = ConvertTo-SecureString -String $RawSecret -AsPlainText -Force
 Lastly, you store the secret using the [Set-AzKeyVaultSecret](/powershell/module/az.keyvault/set-azkeyvaultsecret) cmdlet.
 
 ```azurepowershell-interactive
-$secret = Set-AzKeyVaultSecret -VaultName "<your-unique-keyvault-name>" -Name "MultilineSecret" -SecretValue $SecureSecret
+$secret = Set-AzKeyVaultSecret -VaultName "<vault-name>" -Name "MultilineSecret" -SecretValue $SecureSecret
 ```
 
 You can then view the stored secret using the Azure CLI [az keyvault secret show](/cli/azure/keyvault/secret#az-keyvault-secret-show) command or the Azure PowerShell [Get-AzKeyVaultSecret](/powershell/module/az.keyvault/get-azkeyvaultsecret) cmdlet.
 
 ```azurecli-interactive
-az keyvault secret show --name "MultilineSecret" --vault-name "<your-unique-keyvault-name>" --query "value"
+az keyvault secret show --name "MultilineSecret" --vault-name "<vault-name>" --query "value"
 ```
 
 The secret will be returned with `\n` in place of newline:
 
@@ -6,7 +6,7 @@ ms.service: azure-key-vault
 ms.subservice: secrets
 author: msmbaldwin
 ms.author: mbaldwin
-ms.date: 01/30/2026
+ms.date: 03/26/2026
 
 ms.custom: devx-track-azurepowershell
 
@@ -71,7 +71,7 @@ Connect-AzAccount
 If you have multiple Azure subscriptions, you can list them using the [Get-AzSubscription](/powershell/module/az.accounts/get-azsubscription) cmdlet, and specify the subscription you wish to use with the [Set-AzContext](/powershell/module/az.accounts/set-azcontext) cmdlet.
 
 ```azurepowershell-interactive
-Set-AzContext -SubscriptionId <subscriptionId>
+Set-AzContext -SubscriptionId <subscription-id>
 ```
 
 ### Set variables
@@ -81,9 +81,9 @@ First, set the variables to be used by the PowerShell cmdlets in the following s
 We'll also use the Azure PowerShell [Get-AzContext](/powershell/module/az.accounts/get-azcontext) and [Get-AzStorageAccount](/powershell/module/az.storage/get-azstorageaccount) cmdlets to get your user ID and the context of your Azure storage account.
 
 ```azurepowershell-interactive
-$resourceGroupName = <YourResourceGroupName>
-$storageAccountName = <YourStorageAccountName>
-$keyVaultName = <YourKeyVaultName>
+$resourceGroupName = <resource-group>
+$storageAccountName = <storage-account-name>
+$keyVaultName = <vault-name>
 $keyVaultSpAppId = "cfa8b339-82a2-471a-a3c9-0fc0be7a4093"
 $storageAccountKey = "key1" #(key1 or key2 are allowed)
 
@@ -132,7 +132,7 @@ Use the Azure PowerShell [New-AzRoleAssignment](/powershell/module/az.resources/
 ```azurepowershell-interactive
 # Give your user principal access to all storage account permissions, on your Key Vault instance
 
-New-AzRoleAssignment -SignInName $userId -RoleDefinitionName "Key Vault Secrets Officer" -Scope "/subscriptions/{subscriptionID}/resourceGroups/{resource-group}/providers/Microsoft.KeyVault/vaults/$keyVaultName"
+New-AzRoleAssignment -SignInName $userId -RoleDefinitionName "Key Vault Secrets Officer" -Scope "/subscriptions/<subscription-id>/resourceGroups/<resource-group>/providers/Microsoft.KeyVault/vaults/$keyVaultName"
 ```
 
 The permissions for storage accounts aren't available on the storage account "Access policies" page in the Azure portal.
@@ -201,11 +201,11 @@ The commands in this section complete the following actions:
 
 ### Set variables
 
-First, set the variables to be used by the PowerShell cmdlets in the following steps. Be sure to update the \<YourStorageAccountName\> and \<YourKeyVaultName\> placeholders.
+First, set the variables to be used by the PowerShell cmdlets in the following steps. Be sure to update the `<storage-account-name>` and `<vault-name>` placeholders.
 
 ```azurepowershell-interactive
-$storageAccountName = <YourStorageAccountName>
-$keyVaultName = <YourKeyVaultName>
+$storageAccountName = <storage-account-name>
+$keyVaultName = <vault-name>
 ```
 
 ### Define a shared access signature definition template
@@ -237,7 +237,7 @@ For more information about account SAS, see:
 Use the Azure PowerShell [Set-AzKeyVaultManagedStorageSasDefinition](/powershell/module/az.keyvault/set-azkeyvaultmanagedstoragesasdefinition) cmdlet to create a shared access signature definition.  You can provide the name of your choice to the `-Name` parameter.
 
 ```azurepowershell-interactive
-Set-AzKeyVaultManagedStorageSasDefinition -AccountName $storageAccountName -VaultName $keyVaultName -Name <YourSASDefinitionName> -TemplateUri $sasTemplate -SasType 'account' -ValidityPeriod ([System.Timespan]::FromDays(1))
+Set-AzKeyVaultManagedStorageSasDefinition -AccountName $storageAccountName -VaultName $keyVaultName -Name <sas-definition-name> -TemplateUri $sasTemplate -SasType 'account' -ValidityPeriod ([System.Timespan]::FromDays(1))
 ```
 
 ### Verify the shared access signature definition
@@ -247,14 +247,14 @@ You can verify that the shared access signature definition has been stored in yo
 First, find the shared access signature definition in your key vault.
 
 ```azurepowershell-interactive
-Get-AzKeyVaultSecret -VaultName <YourKeyVaultName>
+Get-AzKeyVaultSecret -VaultName <vault-name>
 ```
 
 The secret corresponding to your SAS definition will have these properties:
 
 ```console
-Vault Name   : <YourKeyVaultName>
-Name         : <SecretName>
+Vault Name   : <vault-name>
+Name         : <secret-name>
 ...
 Content Type : application/vnd.ms-sastoken-storage
 Tags         :
@@ -263,7 +263,7 @@ Tags         :
 You can now use the [Get-AzKeyVaultSecret](/powershell/module/az.keyvault/get-azkeyvaultsecret) cmdlet with the `VaultName` and `Name` parameters to view the contents of that secret.
 
 ```azurepowershell-interactive
-$secretValueText = Get-AzKeyVaultSecret -VaultName <YourKeyVaultName> -Name <SecretName> -AsPlainText
+$secretValueText = Get-AzKeyVaultSecret -VaultName <vault-name> -Name <secret-name> -AsPlainText
 Write-Output $secretValueText
 ```
 
 
@@ -7,7 +7,7 @@ ms.service: azure-key-vault
 ms.subservice: secrets
 author: msmbaldwin
 ms.author: mbaldwin
-ms.date: 01/30/2026
+ms.date: 03/26/2026
 
 ms.custom: devx-track-azurecli
 # Customer intent: As a developer, I want to use Azure Key Vault and Azure CLI for secure management of my storage credentials and shared access signature tokens.
@@ -75,10 +75,10 @@ Use the Azure CLI [az role assignment create](/cli/azure/role/assignment) comman
 
 - `--role`: Pass the "Storage Account Key Operator Service Role" Azure role. This role limits the access scope to your storage account. For a classic storage account, pass "Classic Storage Account Key Operator Service Role" instead.
 - `--assignee`: Pass the value "https://vault.azure.net", which is the url for Key Vault in the Azure public cloud. (For Azure Government cloud use '--assignee-object-id' instead, see [Service principal application ID](#service-principal-application-id).)
-- `--scope`: Pass your storage account resource ID, which is in the form `/subscriptions/<subscriptionID>/resourceGroups/<StorageAccountResourceGroupName>/providers/Microsoft.Storage/storageAccounts/<YourStorageAccountName>`. Find your subscription ID, by using the Azure CLI [az account list](/cli/azure/account?#az-account-list) command. Find your storage account name and storage account resource group, by using the Azure CLI [az storage account list](/cli/azure/storage/account?#az-storage-account-list) command.
+- `--scope`: Pass your storage account resource ID, which is in the form `/subscriptions/<subscription-id>/resourceGroups/<resource-group>/providers/Microsoft.Storage/storageAccounts/<storage-account-name>`. Find your subscription ID, by using the Azure CLI [az account list](/cli/azure/account?#az-account-list) command. Find your storage account name and storage account resource group, by using the Azure CLI [az storage account list](/cli/azure/storage/account?#az-storage-account-list) command.
 
 ```azurecli-interactive
-az role assignment create --role "Storage Account Key Operator Service Role" --assignee "https://vault.azure.net" --scope "/subscriptions/<subscriptionID>/resourceGroups/<StorageAccountResourceGroupName>/providers/Microsoft.Storage/storageAccounts/<YourStorageAccountName>"
+az role assignment create --role "Storage Account Key Operator Service Role" --assignee "https://vault.azure.net" --scope "/subscriptions/<subscription-id>/resourceGroups/<resource-group>/providers/Microsoft.Storage/storageAccounts/<storage-account-name>"
  ```
 ### Give your user account permission to managed storage accounts
 
@@ -87,7 +87,7 @@ Use the Azure CLI [az role assignment create](/cli/azure/role/assignment#az-role
 ```azurecli-interactive
 # Give your user principal access to all storage account permissions, on your Key Vault instance
 
-az role assignment create --role "Key Vault Secrets Officer" --assignee [email protected] --scope /subscriptions/{subscriptionID}/resourceGroups/{resource-group}/providers/Microsoft.KeyVault/vaults/<YourKeyVaultName>
+az role assignment create --role "Key Vault Secrets Officer" --assignee [email protected] --scope /subscriptions/<subscription-id>/resourceGroups/<resource-group>/providers/Microsoft.KeyVault/vaults/<vault-name>
 ```
 
 Permissions for storage accounts aren't available on the storage account "Access policies" page in the Azure portal.
@@ -98,10 +98,10 @@ Create a Key Vault managed storage account using the Azure CLI [az keyvault stor
 
 - `--vault-name`: Pass the name of your key vault. To find the name of your key vault, use the Azure CLI [az keyvault list](/cli/azure/keyvault?#az-keyvault-list) command.
 - `-n`: Pass the name of your storage account. To find the name of your storage account, use the Azure CLI [az storage account list](/cli/azure/storage/account?#az-storage-account-list) command.
-- `--resource-id`: Pass your storage account resource ID, which is in the form `/subscriptions/<subscriptionID>/resourceGroups/<StorageAccountResourceGroupName>/providers/Microsoft.Storage/storageAccounts/<YourStorageAccountName>`. Find your subscription ID, by using the Azure CLI [az account list](/cli/azure/account?#az-account-list) command. Find your storage account name and storage account resource group, by using the Azure CLI [az storage account list](/cli/azure/storage/account?#az-storage-account-list) command.
+- `--resource-id`: Pass your storage account resource ID, which is in the form `/subscriptions/<subscription-id>/resourceGroups/<resource-group>/providers/Microsoft.Storage/storageAccounts/<storage-account-name>`. Find your subscription ID, by using the Azure CLI [az account list](/cli/azure/account?#az-account-list) command. Find your storage account name and storage account resource group, by using the Azure CLI [az storage account list](/cli/azure/storage/account?#az-storage-account-list) command.
 
 ```azurecli-interactive
-az keyvault storage add --vault-name <YourKeyVaultName> -n <YourStorageAccountName> --active-key-name key1 --auto-regenerate-key --regeneration-period P30D --resource-id "/subscriptions/<subscriptionID>/resourceGroups/<StorageAccountResourceGroupName>/providers/Microsoft.Storage/storageAccounts/<YourStorageAccountName>"
+az keyvault storage add --vault-name <vault-name> -n <storage-account-name> --active-key-name key1 --auto-regenerate-key --regeneration-period P30D --resource-id "/subscriptions/<subscription-id>/resourceGroups/<resource-group>/providers/Microsoft.Storage/storageAccounts/<storage-account-name>"
 ```
 
 ## Shared access signature tokens
@@ -110,7 +110,7 @@ You can also ask Key Vault to generate shared access signature tokens. A shared
 
 The commands in this section complete the following actions:
 
-- Set an account shared access signature definition `<YourSASDefinitionName>`. The definition is set on a Key Vault managed storage account `<YourStorageAccountName>` in your key vault `<YourKeyVaultName>`.
+- Set an account shared access signature definition `<sas-definition-name>`. The definition is set on a Key Vault managed storage account `<storage-account-name>` in your key vault `<vault-name>`.
 - Set a Key Vault managed storage shared access signature definition in the vault. The definition has the template URI of the shared access signature token that was created. The definition has the shared access signature type `account` and is valid for N days.
 - Verify that the shared access signature was saved in your key vault as a secret.
 
@@ -146,7 +146,7 @@ For more information about account SAS, see:
 Use the Azure CLI [az keyvault storage sas-definition create](/powershell/module/az.keyvault/set-azkeyvaultmanagedstoragesasdefinition) command, passing the SAS definition template from the previous step to the `--template-uri` parameter, to create a shared access signature definition.  You can provide the name of your choice to the `-n` parameter.
 
 ```azurecli-interactive
-az keyvault storage sas-definition create --vault-name <YourKeyVaultName> --account-name <YourStorageAccountName> -n <YourSASDefinitionName> --validity-period P2D --sas-type account --template-uri <sasDefinitionTemplate>
+az keyvault storage sas-definition create --vault-name <vault-name> --account-name <storage-account-name> -n <sas-definition-name> --validity-period P2D --sas-type account --template-uri <sas-definition-template>
 ```
 
 ### Verify the shared access signature definition
@@ -156,7 +156,7 @@ You can verify that the shared access signature definition has been stored in yo
 You can now use the [az keyvault storage sas-definition show](/azure/key-vault/secrets/overview-storage-keys) command and the `id` property to view the content of that secret.
 
 ```azurecli-interactive
-az keyvault storage sas-definition show --id https://<YourKeyVaultName>.vault.azure.net/storage/<YourStorageAccountName>/sas/<YourSASDefinitionName>
+az keyvault storage sas-definition show --id https://<vault-name>.vault.azure.net/storage/<storage-account-name>/sas/<sas-definition-name>
 ```
 
 ## Next steps
 
@@ -79,7 +79,7 @@ Two Azure resources are defined in the Bicep file:
     ---
 
     > [!NOTE]
-    > Replace **\<vault-name\>** with the name of the key vault. Replace **\<object-id\>** with the object ID of a user, service principal, or security group in the Microsoft Entra tenant for the vault. The object ID must be unique for the list of access policies. Get it by using Get-AzADUser or Get-AzADServicePrincipal cmdlets.
+    > Replace **`<vault-name>`** with the name of the key vault. Replace **`<object-id>`** with the object ID of a user, service principal, or security group in the Microsoft Entra tenant for the vault. The object ID must be unique for the list of access policies. Get it by using Get-AzADUser or Get-AzADServicePrincipal cmdlets.
 
     When the deployment finishes, you should see a message indicating the deployment succeeded.
 
 
@@ -6,7 +6,7 @@ ms.service: azure-key-vault
 ms.subservice: secrets
 ms.topic: quickstart
 ms.custom: mvc, devx-track-azurecli, mode-api
-ms.date: 01/30/2026
+ms.date: 03/26/2026
 
 ms.author: mbaldwin
 #Customer intent: As a security admin who is new to Azure, I want to use Key Vault to securely store keys and passwords in Azure
@@ -40,17 +40,17 @@ To add a secret to the vault, you just need to take a couple of additional steps
 Use the Azure CLI [az keyvault secret set](/cli/azure/keyvault/secret#az-keyvault-secret-set) command below to create a secret in Key Vault called **ExamplePassword** that will store the value **hVFkk965BuUv** :
 
 ```azurecli
-az keyvault secret set --vault-name "<your-unique-keyvault-name>" --name "ExamplePassword" --value "hVFkk965BuUv"
+az keyvault secret set --vault-name "<vault-name>" --name "ExamplePassword" --value "hVFkk965BuUv"
 ```
 
 ## Retrieve a secret from Key Vault
 
-You can now reference this password that you added to Azure Key Vault by using its URI. Use **`https://<your-unique-keyvault-name>.vault.azure.net/secrets/ExamplePassword`** to get the current version.
+You can now reference this password that you added to Azure Key Vault by using its URI. Use **`https://<vault-name>.vault.azure.net/secrets/ExamplePassword`** to get the current version.
 
 To view the value contained in the secret as plain text, use the Azure CLI [az keyvault secret show](/cli/azure/keyvault/secret#az-keyvault-secret-show) command:
 
 ```azurecli
-az keyvault secret show --name "ExamplePassword" --vault-name "<your-unique-keyvault-name>" --query "value"
+az keyvault secret show --name "ExamplePassword" --vault-name "<vault-name>" --query "value"
 ```
 
 Now, you have created a Key Vault, stored a secret, and retrieved it.