Cloud Identity
Public clouds provide identity management and access control infrastructure that enable their customers to define one security principal that can access multiple services using secret-protected or temporary credentials. For example, Azure allows you to define an identity for an Application, like MM, that can access your Storage and Database services. The MM application can get temporary credentials, like Access Tokens, that can be used to access Azure services. Public clouds support key vaults that help you to safeguard secrets used by cloud apps and services. Each secret has a unique secret identifier which is a URL to a cloud identity secret vault secret (allowing for external storage of such password in a cloud secret vault).
For more details see the Manage Cloud Identities section.