In a scenario where a company is automating server deployments to Azure and there is a concern about the security of administrative credentials being exposed during this process, which Azure service would be most appropriate to recommend for encrypting and securely managing these credentials?