FlexDeploy provides out of box integration with Azure Key Vault to retrieve secrets. FlexDeploy will authenticate using the OAuth 2.0 authentication method.
...
Create new App registration in the Azure Portal. You can leave the Redirect URL blank.
Create a new Client Secret in the Certificates & secrets section in the created app registration.
Copy the secret as this is the last chance you have to do so.
Provide the appropriate Key Vault Secrets User role to the created app registration in the desired Key Vault's Access policies section (for Vault access policy) or Access control (IAM) section (for Azure role-based access control).
Here are screenshots for IAM setup.
...
FlexDeploy Setup
You must first create a Credential Store in FlexDeploy by clicking the + Create button on Configuration - Integration - Credential Store page. The credential store represents an instance of a specific type of credential store provider. If you have more than one Azure Key Vault, you will create an equal number of Credential Stores in FlexDeploy.
...