Managed Identity in Azure quite simply provides an AAD backed identity for your Web App or Virtual Machine, in order to communicate with other Azure services without explicitly providing credentials.

Whilst the range of Azure services that you can communicate with is many, this GIF focusses on Key Vault.