better-noon-15962
09/29/2021, 6:44 PMpulumi cli
from a pipeline.
From what I understand with pulumi cli
(https://www.pulumi.com/docs/intro/concepts/secrets/#azure-key-vault), the secret provider authentication is based on azure environment variables:
ARM_SUBSCRIPTION_ID
ARM_CLIENT_ID
ARM_CLIENT_SECRET
ARM_TENANT_ID
is there a un-documented way of having 2 sets of Azure auth ENV. One for secret-provider and second for AzureProvider and deploying the stack?
Currently it seem that the azurekeyvault
have to be in the same subscription of where the stack is deployed.
Thanks