To move sensitive connection information out of the mdrivenserver admin-database and/or the turnkeysettings.xml file you can now do the following:

Put the desired string value in an environment variable (you can use azure key vault ) to put values in environment variables only seen by the desired applications).

Using the name of the environment variable padded with % ; ie %SomeEnvVar% - and put this padded value into the MDrivenServer-UI or the/any TurnkeySettings.xml file.

The padded %SomeEnvVar% value will be resolved when seen into the value of the SomeEnvVar.

This works for:

• All values in TurnkeySettings.xml (and its different overrides)
• MDrivenServerOverride.xml file: The MDrivenServerPWD parameter
• MDrivenServer UI: EmailHost, EmailHostPWD, EmailFrom, EmailFromPresentation, A0-ConnectionString