diff --git a/docs/images/AzureKeyVaultPermissions.png b/docs/images/AzureKeyVaultPermissions.png
new file mode 100644
index 0000000..789ec7c
Binary files /dev/null and b/docs/images/AzureKeyVaultPermissions.png differ
diff --git a/docs/index.md b/docs/index.md
index 62abd97..afcea48 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -131,6 +131,8 @@ and the Key Vault resource should look like this:
 
 In the Access control (IAM) section add the users to the **Key Vault Secrets User** role assignment.
 
+![Grant Access to Azure Key Vault](images/AzureKeyVaultPermissions.png)
+
 Provide the users with the **URI** of the Key Vault. In the example the URI is "https://eus2kv.vault.azure.net/". 
 
 ![Key Vault URI](images/AzureKeyVaultOverview.png)