diff --git a/sdk/attestation/azure-resourcemanager-attestation/pom.xml b/sdk/attestation/azure-resourcemanager-attestation/pom.xml
index b69a3c03f8789..381f82c1c3b2d 100644
--- a/sdk/attestation/azure-resourcemanager-attestation/pom.xml
+++ b/sdk/attestation/azure-resourcemanager-attestation/pom.xml
@@ -39,6 +39,9 @@
     <properties>
         <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
         <legal><![CDATA[[INFO] Any downloads listed may be third party software.  Microsoft grants you no rights for third party software.]]></legal>
+        <codesnippet.skip>false</codesnippet.skip>
+        <javadocDoclet></javadocDoclet>
+        <javadocDocletOptions></javadocDocletOptions>
     </properties>
     <dependencies>
         <dependency>
diff --git a/sdk/attestation/azure-security-attestation/README.md b/sdk/attestation/azure-security-attestation/README.md
index 602a9d9baee88..4c18617905b63 100644
--- a/sdk/attestation/azure-security-attestation/README.md
+++ b/sdk/attestation/azure-security-attestation/README.md
@@ -31,14 +31,14 @@ Maven dependency for the Azure Attestation  library. Add it to your project's PO
 - [Azure Subscription][azure_subscription]
 - An existing [Azure Attestation][azure_attestation]. If you need to create an attestation instance, you can use the [Azure Cloud Shell][azure_cloud_shell] to create one with this Azure CLI command. Replace `<your-resource-group-name>` and `<your-instance-name>` with your own, unique names:
 
-    ```bash
-    az attestation create --resource-group <your-resource-group-name> --name <your-key-vault-name>
-    ```
+```bash
+az attestation create --resource-group <your-resource-group-name> --name <your-key-vault-name>
+```
 
 ### Authenticate the client
 In order to interact with the Azure Attestation service, your client must present an Azure Active Directory bearer token to the service.
 
-The simplest way of providing a bearer token is to use the  `DefaultAzureCredential` authentication method by providing client secret credentials is being used in this getting started section but you can find more ways to authenticate with [azure-identity][azure_identity].
+The simplest way of providing a bearer token is to use the  `DefaultAzureCredential` authentication method by providing client secret credentials is being used in this getting started section, but you can find more ways to authenticate with [azure-identity][azure_identity].
 
 
 ## Key concepts
diff --git a/sdk/attestation/azure-security-attestation/pom.xml b/sdk/attestation/azure-security-attestation/pom.xml
index 2e4ba6f83349a..d2dd2df34d73b 100644
--- a/sdk/attestation/azure-security-attestation/pom.xml
+++ b/sdk/attestation/azure-security-attestation/pom.xml
@@ -39,6 +39,9 @@
       --add-opens com.azure.security.attestation/com.azure.security.attestation.models=ALL-UNNAMED
       --add-opens com.azure.security.attestation/com.azure.security.attestation.models=com.fasterxml.jackson.databind
     </javaModulesSurefireArgLine>
+    <codesnippet.skip>false</codesnippet.skip>
+    <javadocDoclet></javadocDoclet>
+    <javadocDocletOptions></javadocDocletOptions>
   </properties>
 
   <dependencies>
diff --git a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAdministrationAsyncClient.java b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAdministrationAsyncClient.java
index d4869f104b583..861105bc232b0 100644
--- a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAdministrationAsyncClient.java
+++ b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAdministrationAsyncClient.java
@@ -294,7 +294,15 @@ Mono<Response<PolicyResult>> setAttestationPolicyWithResponse(AttestationType at
      * which the customer specified.
      *
      * For an example of how to check the policy token hash:
-     * {@codesnippet com.azure.security.attestation.AttestationAdministrationAsyncClient.checkPolicyTokenHash}
+     * <!-- src_embed com.azure.security.attestation.AttestationAdministrationAsyncClient.checkPolicyTokenHash -->
+     * <pre>
+     * BinaryData expectedHash = client.calculatePolicyTokenHash&#40;policyToSet, null&#41;;
+     * BinaryData actualHash = result.getPolicyTokenHash&#40;&#41;;
+     * if &#40;!expectedHash.equals&#40;actualHash&#41;&#41; &#123;
+     *     throw new RuntimeException&#40;&quot;Policy was set but not received!!!&quot;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.attestation.AttestationAdministrationAsyncClient.checkPolicyTokenHash -->
      *
      * @param policy AttestationPolicy document use in the underlying JWT.
      * @param signer Optional signing key used to sign the underlying JWT.
diff --git a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAdministrationClient.java b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAdministrationClient.java
index 5963835d282e3..a1dc54603e6b6 100644
--- a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAdministrationClient.java
+++ b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAdministrationClient.java
@@ -180,7 +180,15 @@ public Response<PolicyResult> setAttestationPolicyWithResponse(AttestationType a
      * which the customer specified.
      *
      * For an example of how to check the policy token hash:
-     * {@codesnippet com.azure.security.attestation.AttestationAdministrationAsyncClient.checkPolicyTokenHash}
+     * <!-- src_embed com.azure.security.attestation.AttestationAdministrationAsyncClient.checkPolicyTokenHash -->
+     * <pre>
+     * BinaryData expectedHash = client.calculatePolicyTokenHash&#40;policyToSet, null&#41;;
+     * BinaryData actualHash = result.getPolicyTokenHash&#40;&#41;;
+     * if &#40;!expectedHash.equals&#40;actualHash&#41;&#41; &#123;
+     *     throw new RuntimeException&#40;&quot;Policy was set but not received!!!&quot;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.attestation.AttestationAdministrationAsyncClient.checkPolicyTokenHash -->
      *
      * @param policy AttestationPolicy document use in the underlying JWT.
      * @param signer Optional signing key used to sign the underlying JWT.
diff --git a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAdministrationClientBuilder.java b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAdministrationClientBuilder.java
index c949c829583aa..3c39d90dcddae 100644
--- a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAdministrationClientBuilder.java
+++ b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAdministrationClientBuilder.java
@@ -190,7 +190,13 @@ public AttestationAdministrationClientBuilder tokenValidationOptions(Attestation
      *
      * Instantiating a synchronous Attestation client:
      * <br>
-     * {@codesnippet com.azure.security.attestation.AttestationAdministrationClientBuilder.buildClient}
+     * <!-- src_embed com.azure.security.attestation.AttestationAdministrationClientBuilder.buildClient -->
+     * <pre>
+     * AttestationAdministrationClient client = new AttestationAdministrationClientBuilder&#40;&#41;
+     *     .endpoint&#40;endpoint&#41;
+     *     .buildClient&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.AttestationAdministrationClientBuilder.buildClient -->
      * @return an instance of {@link AttestationClient}.
      */
     public AttestationAdministrationClient buildClient() {
@@ -202,7 +208,13 @@ public AttestationAdministrationClient buildClient() {
      *
      * Instantiating a synchronous Attestation client:
      * <br>
-     * {@codesnippet com.azure.security.attestation.AttestationAdministrationClientBuilder.buildAsyncClient}
+     * <!-- src_embed com.azure.security.attestation.AttestationAdministrationClientBuilder.buildAsyncClient -->
+     * <pre>
+     * AttestationAdministrationAsyncClient asyncClient = new AttestationAdministrationClientBuilder&#40;&#41;
+     *     .endpoint&#40;endpoint&#41;
+     *     .buildAsyncClient&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.AttestationAdministrationClientBuilder.buildAsyncClient -->
      * @return an instance of {@link AttestationClient}.
      */
     public AttestationAdministrationAsyncClient buildAsyncClient() {
diff --git a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAsyncClient.java b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAsyncClient.java
index d82f7f318f921..1ea1c518d0244 100644
--- a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAsyncClient.java
+++ b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationAsyncClient.java
@@ -171,7 +171,11 @@ public final class AttestationAsyncClient {
      * Retrieves metadata about the attestation signing keys in use by the attestation service.
      *
      * <p><strong>Retrieve the OpenID metadata for this async client.</strong></p>
-     * {@codesnippet com.azure.security.attestation.AttestationAsyncClient.getOpenIdMetadataWithResponse}
+     * <!-- src_embed com.azure.security.attestation.AttestationAsyncClient.getOpenIdMetadataWithResponse -->
+     * <pre>
+     * Mono&lt;Response&lt;AttestationOpenIdMetadata&gt;&gt; response = client.getOpenIdMetadataWithResponse&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.AttestationAsyncClient.getOpenIdMetadataWithResponse -->
      *
      * @throws HttpResponseException thrown if the request is rejected by server.
      * @throws RuntimeException all other wrapped checked exceptions if the request fails to be sent.
@@ -191,7 +195,11 @@ Mono<Response<AttestationOpenIdMetadata>> getOpenIdMetadataWithResponse(Context
      * Retrieves metadata about the attestation signing keys in use by the attestation service.
 
      * <p><strong>Retrieve the OpenID metadata for this async client.</strong></p>
-     * {@codesnippet com.azure.security.attestation.AttestationAsyncClient.getOpenIdMetadata}
+     * <!-- src_embed com.azure.security.attestation.AttestationAsyncClient.getOpenIdMetadata -->
+     * <pre>
+     * Mono&lt;AttestationOpenIdMetadata&gt; openIdMetadata = client.getOpenIdMetadata&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.AttestationAsyncClient.getOpenIdMetadata -->
      *
      * @throws HttpResponseException thrown if the request is rejected by server.
      * @throws RuntimeException all other wrapped checked exceptions if the request fails to be sent.
@@ -211,7 +219,23 @@ public Mono<AttestationOpenIdMetadata> getOpenIdMetadata() {
      *  to validate an attestation token returned by the service.
      * </p>
      * <p><strong>Retrieve Attestation Signers for this async client.</strong></p>
-     * {@codesnippet com.azure.security.attestation.AttestationAsyncClient.getAttestationSigners}
+     * <!-- src_embed com.azure.security.attestation.AttestationAsyncClient.getAttestationSigners -->
+     * <pre>
+     * Mono&lt;List&lt;AttestationSigner&gt;&gt; signers = client.listAttestationSigners&#40;&#41;;
+     * signers.block&#40;&#41;.forEach&#40;cert -&gt; &#123;
+     *     System.out.println&#40;&quot;Found certificate.&quot;&#41;;
+     *     if &#40;cert.getKeyId&#40;&#41; != null&#41; &#123;
+     *         System.out.println&#40;&quot;    Certificate Key ID: &quot; + cert.getKeyId&#40;&#41;&#41;;
+     *     &#125; else &#123;
+     *         System.out.println&#40;&quot;    Signer does not have a Key ID&quot;&#41;;
+     *     &#125;
+     *     cert.getCertificates&#40;&#41;.forEach&#40;chainElement -&gt; &#123;
+     *         System.out.println&#40;&quot;        Cert Subject: &quot; + chainElement.getSubjectDN&#40;&#41;.getName&#40;&#41;&#41;;
+     *         System.out.println&#40;&quot;        Cert Issuer: &quot; + chainElement.getIssuerDN&#40;&#41;.getName&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.AttestationAsyncClient.getAttestationSigners -->
      *
      * @return Returns an array of {@link AttestationSigner} objects.
      */
@@ -228,7 +252,11 @@ public Mono<List<AttestationSigner>> listAttestationSigners() {
      * to validate an attestation token returned by the service.
      * </p>
      * <p><strong>Retrieve Attestation Signers for this async client.</strong></p>
-     * {@codesnippet com.azure.security.attestation.AttestationAsyncClient.getAttestationSignersWithResponse}
+     * <!-- src_embed com.azure.security.attestation.AttestationAsyncClient.getAttestationSignersWithResponse -->
+     * <pre>
+     * Mono&lt;Response&lt;List&lt;AttestationSigner&gt;&gt;&gt; responseOfSigners = client.listAttestationSignersWithResponse&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.AttestationAsyncClient.getAttestationSignersWithResponse -->
      *
      * @return Returns an array of {@link AttestationSigner} objects.
      */
diff --git a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationClientBuilder.java b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationClientBuilder.java
index 0addb31a70dbb..ee18d4f39d20b 100644
--- a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationClientBuilder.java
+++ b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationClientBuilder.java
@@ -188,7 +188,13 @@ public AttestationClientBuilder tokenValidationOptions(AttestationTokenValidatio
      *
      * Instantiating a synchronous Attestation client:
      * <br>
-     * {@codesnippet com.azure.security.attestation.AttestationClientBuilder.buildClient}
+     * <!-- src_embed com.azure.security.attestation.AttestationClientBuilder.buildClient -->
+     * <pre>
+     * AttestationClient client = new AttestationClientBuilder&#40;&#41;
+     *     .endpoint&#40;endpoint&#41;
+     *     .buildClient&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.AttestationClientBuilder.buildClient -->
      * @return an instance of {@link AttestationClient}.
      */
     public AttestationClient buildClient() {
@@ -200,7 +206,13 @@ public AttestationClient buildClient() {
      *
      * Instantiating a synchronous Attestation client:
      * <br>
-     * {@codesnippet com.azure.security.attestation.AttestationClientBuilder.buildAsyncClient}
+     * <!-- src_embed com.azure.security.attestation.AttestationClientBuilder.buildAsyncClient -->
+     * <pre>
+     * AttestationAsyncClient asyncClient = new AttestationClientBuilder&#40;&#41;
+     *     .endpoint&#40;endpoint&#41;
+     *     .buildAsyncClient&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.AttestationClientBuilder.buildAsyncClient -->
      * @return an instance of {@link AttestationClient}.
      */
     public AttestationAsyncClient buildAsyncClient() {
diff --git a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationServiceVersion.java b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationServiceVersion.java
index 18fb50e731b21..b188b78eabd30 100644
--- a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationServiceVersion.java
+++ b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/AttestationServiceVersion.java
@@ -9,6 +9,9 @@
  * The versions of Azure Metrics Advisor supported by this client library.
  */
 public enum AttestationServiceVersion implements ServiceVersion {
+    /**
+     * Service version {@code 2020-10-01}.
+     */
     V2020_10_01("2020-10-01");
 
     private final String version;
diff --git a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/models/AttestationOptions.java b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/models/AttestationOptions.java
index 9a2a75aaf070e..4b950139c6811 100644
--- a/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/models/AttestationOptions.java
+++ b/sdk/attestation/azure-security-attestation/src/main/java/com/azure/security/attestation/models/AttestationOptions.java
@@ -81,7 +81,11 @@ public final class AttestationOptions {
      * The evidence will typically take the form of either an OpenEnclave report or an Intel SGX quote.
      *
      * <p><strong>Create an AttestationOptions from an SGX quote:</strong></p>
-     * {@codesnippet com.azure.security.attestation.models..fromEvidence#byte}
+     * <!-- src_embed com.azure.security.attestation.models..fromEvidence#byte -->
+     * <pre>
+     * AttestationOptions options = new AttestationOptions&#40;sgxQuote&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.models..fromEvidence#byte -->
      * @param evidence to be used in the attest request.
      */
     public AttestationOptions(BinaryData evidence) {
@@ -110,7 +114,12 @@ public BinaryData getEvidence() {
      * the {@link AttestationDataInterpretation} specified for the RunTime Data was set to "BINARY", or
      *
      * <p><strong>Setting RunTime Data Property</strong></p>
-     * {@codesnippet com.azure.security.attestation.models..setInitTimeData#byte}
+     * <!-- src_embed com.azure.security.attestation.models..setInitTimeData#byte -->
+     * <pre>
+     * AttestationOptions optionsWithInitTimeData = new AttestationOptions&#40;openEnclaveReport&#41;
+     *     .setInitTimeData&#40;new AttestationData&#40;inittimeData, AttestationDataInterpretation.BINARY&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.models..setInitTimeData#byte -->
      * @param attestationData the runtimeData value to set.
      * @return this {@link AttestationOptions} object itself.
      */
@@ -122,7 +131,14 @@ public AttestationOptions setRunTimeData(AttestationData attestationData) {
     /**
      * Retrieves the RunTimeData property to be sent to the service.
      * <p><strong>Retrieve the RunTimeData value.</strong></p>
-     * {@codesnippet com.azure.security.attestation.models.AttestationOptions.getRunTimeData}
+     * <!-- src_embed com.azure.security.attestation.models.AttestationOptions.getRunTimeData -->
+     * <pre>
+     * AttestationOptions attestationOptions = new AttestationOptions&#40;openEnclaveReport&#41;
+     *     .setRunTimeData&#40;new AttestationData&#40;runtimeData, AttestationDataInterpretation.JSON&#41;&#41;;
+     *
+     * AttestationData existingRuntimeData = attestationOptions.getRunTimeData&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.models.AttestationOptions.getRunTimeData -->
      * @return The RunTimeData value set by {@link AttestationOptions#setRunTimeData}
      */
     public AttestationData getRunTimeData() {
@@ -140,7 +156,12 @@ public AttestationData getRunTimeData() {
      * for the {@link AttestationData} is set to "JSON".
      *
      * <p><strong>Setting InitTime Data Property</strong></p>
-     * {@codesnippet com.azure.security.attestation.models..setInitTimeData#byte}
+     * <!-- src_embed com.azure.security.attestation.models..setInitTimeData#byte -->
+     * <pre>
+     * AttestationOptions optionsWithInitTimeData = new AttestationOptions&#40;openEnclaveReport&#41;
+     *     .setInitTimeData&#40;new AttestationData&#40;inittimeData, AttestationDataInterpretation.BINARY&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.models..setInitTimeData#byte -->
      * @param attestationData the InitTimeData value to set.
      * @return this {@link AttestationOptions} object itself.
      */
@@ -152,7 +173,14 @@ public AttestationOptions setInitTimeData(AttestationData attestationData) {
     /**
      * Retrieves the InitTimeData property to be sent to the service.
      * <p><strong>Retrieve the InitTimeData value.</strong></p>
-     * {@codesnippet com.azure.security.attestation.models.AttestationOptions.getInitTimeData}
+     * <!-- src_embed com.azure.security.attestation.models.AttestationOptions.getInitTimeData -->
+     * <pre>
+     * AttestationOptions attestationOptions = new AttestationOptions&#40;openEnclaveReport&#41;
+     *     .setInitTimeData&#40;new AttestationData&#40;inittimeData, AttestationDataInterpretation.JSON&#41;&#41;;
+     *
+     * AttestationData existingRuntimeData = attestationOptions.getInitTimeData&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.models.AttestationOptions.getInitTimeData -->
      * @return The InitTimeData value set by {@link AttestationOptions#setInitTimeData}
      */
     public AttestationData getInitTimeData() {
@@ -165,7 +193,12 @@ public AttestationData getInitTimeData() {
      * determine how a proposed attestation policy would affect an attestation token.</p>
      * <b><i>Note that the resulting token cannot be validated.</i></b>
      * <p><b><i>Example of setting AttestationOptions with a draft policy.</i></b></p>
-     * {@codesnippet com.azure.security.attestation.models.AttestationOptions.setDraftPolicyForAttestation#String}
+     * <!-- src_embed com.azure.security.attestation.models.AttestationOptions.setDraftPolicyForAttestation#String -->
+     * <pre>
+     * AttestationOptions request = new AttestationOptions&#40;openEnclaveReport&#41;
+     *     .setDraftPolicyForAttestation&#40;&quot;version=1.0; authorizationrules&#123;=&gt; permit&#40;&#41;;&#125;; issuancerules&#123;&#125;;&quot;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.models.AttestationOptions.setDraftPolicyForAttestation#String -->
      * @param draftPolicyForAttestation the draftPolicyForAttestation value to set.
      * @return this {@link AttestationOptions} object itself.
      */
@@ -178,7 +211,14 @@ public AttestationOptions setDraftPolicyForAttestation(String draftPolicyForAtte
      * Gets the draftPolicyForAttestation property which is used to attest against the draft policy.
      *
      * <p>Gets the previously set draft policy for attestation.</p>
-     * {@codesnippet com.azure.security.attestation.models.AttestationOptions.getDraftPolicyForAttestation}
+     * <!-- src_embed com.azure.security.attestation.models.AttestationOptions.getDraftPolicyForAttestation -->
+     * <pre>
+     * AttestationOptions getOptions = new AttestationOptions&#40;openEnclaveReport&#41;
+     *     .setDraftPolicyForAttestation&#40;&quot;version=1.0; authorizationrules&#123;=&gt; permit&#40;&#41;;&#125;; issuancerules&#123;&#125;;&quot;&#41;;
+     *
+     * String draftPolicy = getOptions.getDraftPolicyForAttestation&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.attestation.models.AttestationOptions.getDraftPolicyForAttestation -->
      * @return The draft policy if set.
      */
     public String getDraftPolicyForAttestation() {
diff --git a/sdk/attestation/azure-security-attestation/src/samples/java/com/azure/security/attestation/ReadMeSamples.java b/sdk/attestation/azure-security-attestation/src/samples/java/com/azure/security/attestation/ReadmeSamples.java
similarity index 100%
rename from sdk/attestation/azure-security-attestation/src/samples/java/com/azure/security/attestation/ReadMeSamples.java
rename to sdk/attestation/azure-security-attestation/src/samples/java/com/azure/security/attestation/ReadmeSamples.java
diff --git a/sdk/keyvault/azure-security-keyvault-administration/README.md b/sdk/keyvault/azure-security-keyvault-administration/README.md
index 20c6213b13525..5e608b3fadd74 100644
--- a/sdk/keyvault/azure-security-keyvault-administration/README.md
+++ b/sdk/keyvault/azure-security-keyvault-administration/README.md
@@ -24,9 +24,9 @@ Maven dependency for the Azure Key Vault Administration library. Add it to your
 - [Azure Subscription][azure_subscription]
 - An existing [Azure Key Vault Managed HSM][azure_keyvault_mhsm]. If you need to create a Managed HSM, you can use the [Azure Cloud Shell][azure_cloud_shell] to create one with this Azure CLI command. Replace `<your-resource-group-name>` and `<your-key-vault-mhsm-name>` with your own, unique names:
 
-    ```Bash
-    az keyvault create --hsm-name <your-key-vault-mhsm-name> --resource-group <your-resource-group-name> --administrators <your-service-principal-object-id> --location <your-azure-location>
-    ```
+```bash
+az keyvault create --hsm-name <your-key-vault-mhsm-name> --resource-group <your-resource-group-name> --administrators <your-service-principal-object-id> --location <your-azure-location>
+```
 
 ### Authenticate the client
 In order to interact with the Azure Key Vault service, you'll need to either create an instance of the [KeyVaultAccessControlClient](#create-an-access-control-client) or an instance of the class [KeyVaultBackupClient](#create-a-backup-client). You would need a **vault url**, which you may see as "DNS Name" in the portal, and **client secret credentials (client id, client secret, tenant id)** to instantiate a client object using the default `DefaultAzureCredential` examples shown in this document.
@@ -39,54 +39,54 @@ To create/get client secret credentials you can use the [Azure Portal][azure_cre
 Here is an [Azure Cloud Shell][azure_cloud_shell] snippet below to
 
  * Create a service principal and configure its access to Azure resources:
+ 
+```bash
+az ad sp create-for-rbac -n <your-application-name> --skip-assignment
+```
 
-    ```Bash
-    az ad sp create-for-rbac -n <your-application-name> --skip-assignment
-    ```
-
-    Output:
+Output:
 
-    ```json
-    {
-        "appId": "generated-app-ID",
-        "displayName": "some-app-name",
-        "name": "https://some-app-name",
-        "password": "random-password",
-        "tenant": "tenant-ID"
-    }
-    ```
+```json
+{
+    "appId": "generated-app-ID",
+    "displayName": "some-app-name",
+    "name": "https://some-app-name",
+    "password": "random-password",
+    "tenant": "tenant-ID"
+}
+```
 
 * Take note of the service principal objectId
-    ```Bash
-    az ad sp show --id <appId> --query objectId
-    ```
+```bash
+az ad sp show --id <appId> --query objectId
+```
 
-  Output:
-    ```
-    "<your-service-principal-object-id>"
-    ```
+Output:
+```
+"<your-service-principal-object-id>"
+```
 
 * Use the returned credentials above to set the **AZURE_CLIENT_ID** (appId), **AZURE_CLIENT_SECRET** (password), and **AZURE_TENANT_ID** (tenantId) environment variables. The following example shows a way to do this in Bash:
 
-    ```Bash
-    export AZURE_CLIENT_ID="generated-app-ID"
-    export AZURE_CLIENT_SECRET="random-password"
-    export AZURE_TENANT_ID="tenant-ID"
-    ```
+```bash
+export AZURE_CLIENT_ID="generated-app-ID"
+export AZURE_CLIENT_SECRET="random-password"
+export AZURE_TENANT_ID="tenant-ID"
+```
 
 * Create the Managed HSM and grant the above mentioned service principal authorization to perform administrative operations on the Managed HSM (replace `<your-resource-group-name>` and `<your-key-vault-mhsm-name>` with your own, unique names and `<your-service-principal-object-id>` with the value from above):
     
-    ```bash
-    az keyvault create --hsm-name <your-key-vault-mhsm-name> --resource-group <your-resource-group-name> --administrators <your-service-principal-object-id> --location <your-azure-location>
-    ```
+```bash
+az keyvault create --hsm-name <your-key-vault-mhsm-name> --resource-group <your-resource-group-name> --administrators <your-service-principal-object-id> --location <your-azure-location>
+```
   
   This service principal is automatically added to the "Managed HSM Administrators" [built-in role][built_in_roles].
 
 * Use the aforementioned Azure Key Vault name to retrieve details of your Key Vault, which also contain your Azure Key Vault URL:
 
-    ```Bash
-    az keyvault show --name <your-key-vault-mhsm-name>
-    ```
+```bash
+az keyvault show --name <your-key-vault-mhsm-name>
+```
 
 #### Activate your managed HSM
 All data plane commands are disabled until the HSM is activated. You will not be able to create keys or assign roles. Only the designated administrators that were assigned during the create command can activate the HSM. To activate the HSM you must download the security domain.
@@ -142,17 +142,16 @@ The Key Vault Backup Client provides both synchronous and asynchronous operation
 > NOTE: The backing store for key backups is a blob storage container using Shared Access Signature authentication. For more details on creating a SAS token using the BlobServiceClient, see the [Azure Storage Blobs client README][storage_readme_sas_token]. Alternatively, it is possible to [generate a SAS token in Storage Explorer][portal_sas_token].
 
 ### Backup Operation
-A backup operation represents a long running operation for a full key backup.
+A backup operation represents a long-running operation for a full key backup.
 
 ### Restore Operation
-A restore operation represents a long running operation for both a full key and selective key restore.
+A restore operation represents a long-running operation for both a full key and selective key restore.
 
 ## Create an Access Control client
 Once you've populated the **AZURE_CLIENT_ID**, **AZURE_CLIENT_SECRET**, and **AZURE_TENANT_ID** environment variables and replaced **your-key-vault-url** with the URI returned above, you can create the `KeyVaultAccessControlClient`:
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L48-L51 -->
-```java
-KeyVaultAccessControlClient accessControlClient = new KeyVaultAccessControlClientBuilder()
+```java readme-sample-createAccessControlClient
+KeyVaultAccessControlClient keyVaultAccessControlClient = new KeyVaultAccessControlClientBuilder()
     .vaultUrl("<your-key-vault-url>")
     .credential(new DefaultAzureCredentialBuilder().build())
     .buildClient();
@@ -174,8 +173,7 @@ The following sections provide several code snippets covering some of the most c
 ### List role definitions
 List the role definitions in the key vault by calling `listRoleDefinitions()`.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L58-L62 -->
-```java
+```java readme-sample-listRoleDefinitions
 PagedIterable<KeyVaultRoleDefinition> roleDefinitions =
     keyVaultAccessControlClient.listRoleDefinitions(KeyVaultRoleScope.GLOBAL);
 
@@ -186,8 +184,7 @@ roleDefinitions.forEach(roleDefinition ->
 ### Create or update a role definition
 Create or update a role definition in the key vault. The following example shows how to create a role definition with a randomly generated name.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L69-L72 -->
-```java
+```java readme-sample-setRoleDefinition
 KeyVaultRoleDefinition roleDefinition = keyVaultAccessControlClient.setRoleDefinition(KeyVaultRoleScope.GLOBAL);
 
 System.out.printf("Created role definition with randomly generated name '%s' and role name '%s'.%n",
@@ -197,8 +194,7 @@ System.out.printf("Created role definition with randomly generated name '%s' and
 ### Retrieve a role definition
 Get an existing role definition. To do this, the scope and 'name' property from an existing role definition are required.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L79-L84 -->
-```java
+```java readme-sample-getRoleDefinition
 String roleDefinitionName = "<role-definition-name>";
 KeyVaultRoleDefinition roleDefinition =
     keyVaultAccessControlClient.getRoleDefinition(KeyVaultRoleScope.GLOBAL, roleDefinitionName);
@@ -210,8 +206,7 @@ System.out.printf("Retrieved role definition with name '%s' and role name '%s'.%
 ### Delete a role definition
 Delete a role definition. To do this, the scope and 'name' property property from an existing role definition are required.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L91-L95 -->
-```java
+```java readme-sample-deleteRoleDefinition
 String roleDefinitionName = "<role-definition-name>";
 
 keyVaultAccessControlClient.deleteRoleDefinition(KeyVaultRoleScope.GLOBAL, roleDefinitionName);
@@ -222,8 +217,7 @@ System.out.printf("Deleted role definition with name '%s'.%n", roleDefinitionNam
 ### List role assignments
 List the role assignments in the key vault by calling `listRoleAssignments()`.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L102-L106 -->
-```java
+```java readme-sample-listRoleAssignments
 PagedIterable<KeyVaultRoleAssignment> roleAssignments =
     keyVaultAccessControlClient.listRoleAssignments(KeyVaultRoleScope.GLOBAL);
 
@@ -238,12 +232,11 @@ A role definition ID can be obtained from the 'id' property of one of the role d
 
 See the [Create/Get Credentials section](#createget-credentials) for links and instructions on how to generate a new service principal and obtain it's object ID. You can also get the object ID for your currently signed in account by running the following Azure CLI command:
 
-```Bash
+```bash
 az ad signed-in-user show --query objectId
 ```
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L113-L120 -->
-```java
+```java readme-sample-createRoleAssignment
 String roleDefinitionId = "<role-definition-id>";
 String servicePrincipalId = "<service-principal-id>";
 KeyVaultRoleAssignment roleAssignment =
@@ -257,8 +250,7 @@ System.out.printf("Created role assignment with randomly generated name '%s' for
 ### Retrieve a role assignment
 Get an existing role assignment. To do this, the 'name' property from an existing role assignment is required.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L127-L131 -->
-```java
+```java readme-sample-getRoleAssignment
 String roleAssignmentName = "<role-assignment-name>";
 KeyVaultRoleAssignment roleAssignment =
     keyVaultAccessControlClient.getRoleAssignment(KeyVaultRoleScope.GLOBAL, roleAssignmentName);
@@ -268,8 +260,7 @@ System.out.printf("Retrieved role assignment with name '%s'.%n", roleAssignment.
 ### Delete a role assignment
 To remove a role assignment from a service principal, the role assignment must be deleted. To do this, the 'name' property from an existing role assignment is required.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L138-L142 -->
-```java
+```java readme-sample-deleteRoleAssignment
 String roleAssignmentName = "<role-assignment-name>";
 
 keyVaultAccessControlClient.deleteRoleAssignment(KeyVaultRoleScope.GLOBAL, roleAssignmentName);
@@ -293,8 +284,7 @@ The following sections provide several code snippets covering some of the most c
 ### List role definitions asynchronously
 List the role definitions in the key vault by calling `listRoleDefinitions()`.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L149-L151 -->
-```java
+```java readme-sample-listRoleDefinitionsAsync
 keyVaultAccessControlAsyncClient.listRoleDefinitions(KeyVaultRoleScope.GLOBAL)
     .subscribe(roleDefinition ->
         System.out.printf("Retrieved role definition with name '%s'.%n", roleDefinition.getName()));
@@ -303,8 +293,7 @@ keyVaultAccessControlAsyncClient.listRoleDefinitions(KeyVaultRoleScope.GLOBAL)
 ### Create or update a role definition asynchronously
 Create or update a role definition in the key vault. The following example shows how to create a role definition with a randomly generated name.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L158-L161 -->
-```java
+```java readme-sample-setRoleDefinitionAsync
 keyVaultAccessControlAsyncClient.setRoleDefinition(KeyVaultRoleScope.GLOBAL)
     .subscribe(roleDefinition ->
         System.out.printf("Created role definition with randomly generated name '%s' and role name '%s'.%n",
@@ -314,8 +303,7 @@ keyVaultAccessControlAsyncClient.setRoleDefinition(KeyVaultRoleScope.GLOBAL)
 ### Retrieve a role definition asynchronously
 Get an existing role definition. To do this, the 'name' property from an existing role definition is required.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L168-L173 -->
-```java
+```java readme-sample-getRoleDefinitionAsync
 String roleDefinitionName = "<role-definition-name>";
 
 keyVaultAccessControlAsyncClient.getRoleDefinition(KeyVaultRoleScope.GLOBAL, roleDefinitionName)
@@ -327,8 +315,7 @@ keyVaultAccessControlAsyncClient.getRoleDefinition(KeyVaultRoleScope.GLOBAL, rol
 ### Delete a role definition asynchronously
 Delete a role definition. To do this, the 'name' property from an existing role definition is required.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L180-L183 -->
-```java
+```java readme-sample-deleteRoleDefinitionAsync
 String roleDefinitionName = "<role-definition-name>";
 
 keyVaultAccessControlAsyncClient.deleteRoleDefinition(KeyVaultRoleScope.GLOBAL, roleDefinitionName)
@@ -338,8 +325,7 @@ keyVaultAccessControlAsyncClient.deleteRoleDefinition(KeyVaultRoleScope.GLOBAL,
 ### List role assignments asynchronously
 List the role assignments in the key vault by calling `listRoleAssignments()`.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L190-L192 -->
-```java
+```java readme-sample-listRoleAssignmentsAsync
 keyVaultAccessControlAsyncClient.listRoleAssignments(KeyVaultRoleScope.GLOBAL)
     .subscribe(roleAssignment ->
         System.out.printf("Retrieved role assignment with name '%s'.%n", roleAssignment.getName()));
@@ -352,12 +338,11 @@ A role definition ID can be obtained from the 'id' property of one of the role d
 
 See the [Create/Get Credentials section](#createget-credentials) for links and instructions on how to generate a new service principal and obtain it's object ID. You can also get the object ID for your currently signed in account by running the following Azure CLI command:
 
-```Bash
+```bash
 az ad signed-in-user show --query objectId
 ```
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L199-L205 -->
-```java
+```java readme-sample-createRoleAssignmentAsync
 String roleDefinitionId = "<role-definition-id>";
 String servicePrincipalId = "<service-principal-id>";
 
@@ -370,8 +355,7 @@ keyVaultAccessControlAsyncClient.createRoleAssignment(KeyVaultRoleScope.GLOBAL,
 ### Retrieve a role assignment asynchronously
 Get an existing role assignment. To do this, the 'name' property from an existing role assignment is required.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L212-L216 -->
-```java
+```java readme-sample-getRoleAssignmentAsync
 String roleAssignmentName = "<role-assignment-name>";
 
 keyVaultAccessControlAsyncClient.getRoleAssignment(KeyVaultRoleScope.GLOBAL, roleAssignmentName)
@@ -382,8 +366,7 @@ keyVaultAccessControlAsyncClient.getRoleAssignment(KeyVaultRoleScope.GLOBAL, rol
 ### Delete a role assignment asynchronously
 To remove a role assignment from a service principal, the role assignment must be deleted. To do this, the 'name' property from an existing role assignment is required.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L223-L227 -->
-```java
+```java readme-sample-deleteRoleAssignmentAsync
 String roleAssignmentName = "<role-assignment-name>";
 
 keyVaultAccessControlAsyncClient.deleteRoleAssignment(KeyVaultRoleScope.GLOBAL, roleAssignmentName)
@@ -394,8 +377,7 @@ keyVaultAccessControlAsyncClient.deleteRoleAssignment(KeyVaultRoleScope.GLOBAL,
 ### Create a Backup client
 Once you've populated the **AZURE_CLIENT_ID**, **AZURE_CLIENT_SECRET**, and **AZURE_TENANT_ID** environment variables and replaced **your-key-vault-url** with the URI returned above, you can create the `KeyVaultBackupClient`:
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L234-L237 -->
-```java
+```java readme-sample-createBackupClient
 KeyVaultBackupClient keyVaultBackupClient = new KeyVaultBackupClientBuilder()
     .vaultUrl("<your-key-vault-url>")
     .credential(new DefaultAzureCredentialBuilder().build())
@@ -414,8 +396,7 @@ The following sections provide several code snippets covering some of the most c
 ### Backup a collection of keys
 Back up an entire collection of keys using `beginBackup()`.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L244-L264 -->
-```java
+```java readme-sample-beginBackup
 String blobStorageUrl = "https://myaccount.blob.core.windows.net/myContainer";
 String sasToken = "sv=2020-02-10&ss=b&srt=o&sp=rwdlactfx&se=2021-06-17T07:13:07Z&st=2021-06-16T23:13:07Z&spr=https&sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D";
 
@@ -442,8 +423,7 @@ if (finalPollResponse.getStatus() == LongRunningOperationStatus.SUCCESSFULLY_COM
 ### Restore a collection of keys
 Restore an entire collection of keys from a backup using `beginRestore()`.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L271-L289 -->
-```java
+```java readme-sample-beginRestore
 String folderUrl = "https://myaccount.blob.core.windows.net/myContainer/mhsm-myaccount-2020090117323313";
 String sasToken = "sv=2020-02-10&ss=b&srt=o&sp=rwdlactfx&se=2021-06-17T07:13:07Z&st=2021-06-16T23:13:07Z&spr=https&sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D";
 
@@ -468,8 +448,7 @@ if (finalPollResponse.getStatus() == LongRunningOperationStatus.SUCCESSFULLY_COM
 ### Selectively restore a key
 Restore a specific key from a backup using `beginSelectiveRestore()`.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L296-L315 -->
-```java
+```java readme-sample-beginSelectiveKeyRestore
 String folderUrl = "https://myaccount.blob.core.windows.net/myContainer/mhsm-myaccount-2020090117323313";
 String sasToken = "sv=2020-02-10&ss=b&srt=o&sp=rwdlactfx&se=2021-06-17T07:13:07Z&st=2021-06-16T23:13:07Z&spr=https&sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D";
 String keyName = "myKey";
@@ -503,8 +482,7 @@ The following sections provide several code snippets covering some of the most c
 ### Backup a collection of keys asynchronously
 Back up an entire collection of keys using `beginBackup()`.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L322-L333 -->
-```java
+```java readme-sample-beginBackupAsync
 String blobStorageUrl = "https://myaccount.blob.core.windows.net/myContainer";
 String sasToken = "sv=2020-02-10&ss=b&srt=o&sp=rwdlactfx&se=2021-06-17T07:13:07Z&st=2021-06-16T23:13:07Z&spr=https&sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D";
 
@@ -522,8 +500,7 @@ keyVaultBackupAsyncClient.beginBackup(blobStorageUrl, sasToken)
 ### Restore a collection of keys asynchronously
 Restore an entire collection of keys from a backup using `beginRestore()`.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L340-L350 -->
-```java
+```java readme-sample-beginRestoreAsync
 String folderUrl = "https://myaccount.blob.core.windows.net/myContainer/mhsm-myaccount-2020090117323313";
 String sasToken = "sv=2020-02-10&ss=b&srt=o&sp=rwdlactfx&se=2021-06-17T07:13:07Z&st=2021-06-16T23:13:07Z&spr=https&sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D";
 
@@ -540,8 +517,7 @@ keyVaultBackupAsyncClient.beginRestore(folderUrl, sasToken)
 ### Selectively restore a key asynchronously
 Restore an entire collection of keys from a backup using `beginSelectiveRestore()`.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java#L358-L369 -->
-```java
+```java readme-sample-beginSelectiveKeyRestoreAsync
 String folderUrl = "https://myaccount.blob.core.windows.net/myContainer/mhsm-myaccount-2020090117323313";
 String sasToken = "sv=2020-02-10&ss=b&srt=o&sp=rwdlactfx&se=2021-06-17T07:13:07Z&st=2021-06-16T23:13:07Z&spr=https&sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D";
 String keyName = "myKey";
@@ -560,9 +536,9 @@ keyVaultBackupAsyncClient.beginSelectiveKeyRestore(folderUrl, sasToken, keyName)
 ### General
 Azure Key Vault Access Control clients raise exceptions. For example, if you try to retrieve a role assignment after it is deleted a `404` error is returned, indicating the resource was not found. In the following snippet, the error is handled gracefully by catching the exception and displaying additional information about the error.
 
-```java
+```java readme-sample-troubleshooting
 try {
-    client.getRoleAssignment(KeyVaultRoleAssignmentScope.GLOBAL, "<role-assginment-name>")
+    keyVaultAccessControlClient.getRoleAssignment(KeyVaultRoleScope.GLOBAL, "<role-assginment-name>");
 } catch (HttpResponseException e) {
     System.out.println(e.getMessage());
 }
diff --git a/sdk/keyvault/azure-security-keyvault-administration/pom.xml b/sdk/keyvault/azure-security-keyvault-administration/pom.xml
index 58ffeb02fcfe5..387bdb5381240 100644
--- a/sdk/keyvault/azure-security-keyvault-administration/pom.xml
+++ b/sdk/keyvault/azure-security-keyvault-administration/pom.xml
@@ -39,6 +39,9 @@
 
       --add-opens com.azure.security.keyvault.administration/com.azure.security.keyvault.administration=ALL-UNNAMED
     </javaModulesSurefireArgLine>
+    <codesnippet.skip>false</codesnippet.skip>
+    <javadocDoclet></javadocDoclet>
+    <javadocDocletOptions></javadocDocletOptions>
   </properties>
 
   <dependencies>
diff --git a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAccessControlAsyncClient.java b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAccessControlAsyncClient.java
index d8f5e8eb2d1f4..86f763ed2ee4a 100644
--- a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAccessControlAsyncClient.java
+++ b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAccessControlAsyncClient.java
@@ -66,7 +66,14 @@
  * method on a {@link KeyVaultAccessControlClientBuilder} object.</p>
  *
  * <p><strong>Samples to construct an async client</strong></p>
- * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.instantiation -->
+ * <pre>
+ * KeyVaultAccessControlAsyncClient keyVaultAccessControlAsyncClient = new KeyVaultAccessControlClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myaccount.managedhsm.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.instantiation -->
  *
  * @see KeyVaultAccessControlClientBuilder
  */
@@ -144,7 +151,13 @@ HttpPipeline getHttpPipeline() {
      * <p><strong>Code Samples</strong></p>
      * <p>Lists all {@link KeyVaultRoleDefinition role definitions}. Prints out the details of the retrieved
      * {@link KeyVaultRoleDefinition role definitions}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.listRoleDefinitions#KeyVaultRoleScope}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.listRoleDefinitions#KeyVaultRoleScope -->
+     * <pre>
+     * keyVaultAccessControlAsyncClient.listRoleDefinitions&#40;KeyVaultRoleScope.GLOBAL&#41;
+     *     .subscribe&#40;roleDefinition -&gt;
+     *         System.out.printf&#40;&quot;Retrieved role definition with name '%s'.%n&quot;, roleDefinition.getName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.listRoleDefinitions#KeyVaultRoleScope -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definitions}.
      *
@@ -254,7 +267,14 @@ Mono<PagedResponse<KeyVaultRoleDefinition>> listRoleDefinitionsNextPage(String c
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a {@link KeyVaultRoleDefinition role definition} with a randomly generated name. Prints out the
      * details of the created {@link KeyVaultRoleDefinition role definition}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.setRoleDefinition#KeyVaultRoleScope}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.setRoleDefinition#KeyVaultRoleScope -->
+     * <pre>
+     * keyVaultAccessControlAsyncClient.setRoleDefinition&#40;KeyVaultRoleScope.GLOBAL&#41;
+     *     .subscribe&#40;roleDefinition -&gt;
+     *         System.out.printf&#40;&quot;Created role definition with randomly generated name '%s' and role name '%s'.%n&quot;,
+     *             roleDefinition.getName&#40;&#41;, roleDefinition.getRoleName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.setRoleDefinition#KeyVaultRoleScope -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definition}.
      * Managed HSM only supports '/'.
@@ -276,7 +296,16 @@ public Mono<KeyVaultRoleDefinition> setRoleDefinition(KeyVaultRoleScope roleScop
      * <p><strong>Code Samples</strong></p>
      * <p>Creates or updates a {@link KeyVaultRoleDefinition role definition} with a given generated name. Prints out
      * the details of the created {@link KeyVaultRoleDefinition role definition}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.setRoleDefinition#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.setRoleDefinition#KeyVaultRoleScope-String -->
+     * <pre>
+     * String myRoleDefinitionName = &quot;504a3d11-5a63-41a9-b603-41bdf88df03e&quot;;
+     *
+     * keyVaultAccessControlAsyncClient.setRoleDefinition&#40;KeyVaultRoleScope.GLOBAL, myRoleDefinitionName&#41;
+     *     .subscribe&#40;roleDefinition -&gt;
+     *         System.out.printf&#40;&quot;Set role definition with name '%s' and role name '%s'.%n&quot;, roleDefinition.getName&#40;&#41;,
+     *             roleDefinition.getRoleName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.setRoleDefinition#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definition}.
      * Managed HSM only supports '/'.
@@ -301,7 +330,39 @@ public Mono<KeyVaultRoleDefinition> setRoleDefinition(KeyVaultRoleScope roleScop
      * <p><strong>Code Samples</strong></p>
      * <p>Creates or updates a {@link KeyVaultRoleDefinition role definition}. Prints out the details of the
      * {@link Response HTTP response} and the created {@link KeyVaultRoleDefinition role definition}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.setRoleDefinitionWithResponse#SetRoleDefinitionOptions}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.setRoleDefinitionWithResponse#SetRoleDefinitionOptions -->
+     * <pre>
+     * String roleDefinitionName = &quot;9de303d3-6ea8-4b8f-a20b-18e67f77e42a&quot;;
+     *
+     * List&lt;KeyVaultRoleScope&gt; assignableScopes = new ArrayList&lt;&gt;&#40;&#41;;
+     * assignableScopes.add&#40;KeyVaultRoleScope.GLOBAL&#41;;
+     * assignableScopes.add&#40;KeyVaultRoleScope.KEYS&#41;;
+     *
+     * List&lt;KeyVaultDataAction&gt; dataActions = new ArrayList&lt;&gt;&#40;&#41;;
+     * dataActions.add&#40;KeyVaultDataAction.START_HSM_RESTORE&#41;;
+     * dataActions.add&#40;KeyVaultDataAction.START_HSM_BACKUP&#41;;
+     * dataActions.add&#40;KeyVaultDataAction.READ_HSM_BACKUP_STATUS&#41;;
+     * dataActions.add&#40;KeyVaultDataAction.READ_HSM_RESTORE_STATUS&#41;;
+     * dataActions.add&#40;KeyVaultDataAction.BACKUP_HSM_KEYS&#41;;
+     * dataActions.add&#40;KeyVaultDataAction.RESTORE_HSM_KEYS&#41;;
+     *
+     * List&lt;KeyVaultPermission&gt; permissions = new ArrayList&lt;&gt;&#40;&#41;;
+     * permissions.add&#40;new KeyVaultPermission&#40;null, null, dataActions, null&#41;&#41;;
+     *
+     * SetRoleDefinitionOptions setRoleDefinitionOptions =
+     *     new SetRoleDefinitionOptions&#40;KeyVaultRoleScope.GLOBAL, roleDefinitionName&#41;
+     *         .setRoleName&#40;&quot;Backup and Restore Role Definition&quot;&#41;
+     *         .setDescription&#40;&quot;Can backup and restore a whole Managed HSM, as well as individual keys.%n&quot;&#41;
+     *         .setAssignableScopes&#40;assignableScopes&#41;
+     *         .setPermissions&#40;permissions&#41;;
+     *
+     * keyVaultAccessControlAsyncClient.setRoleDefinitionWithResponse&#40;setRoleDefinitionOptions&#41;
+     *     .subscribe&#40;response -&gt;
+     *         System.out.printf&#40;&quot;Response successful with status code: %d. Role definition with name '%s' and role&quot;
+     *             + &quot; name '%s' was set.%n&quot;, response.getStatusCode&#40;&#41;, response.getValue&#40;&#41;.getName&#40;&#41;,
+     *             response.getValue&#40;&#41;.getRoleName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.setRoleDefinitionWithResponse#SetRoleDefinitionOptions -->
      *
      * @param options Object representing the configurable options to create or update a
      * {@link KeyVaultRoleDefinition role definition}.
@@ -401,7 +462,16 @@ Mono<Response<KeyVaultRoleDefinition>> setRoleDefinitionWithResponse(SetRoleDefi
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a {@link KeyVaultRoleDefinition role definition}. Prints out the details of the retrieved
      * {@link KeyVaultRoleDefinition role definition}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.getRoleDefinition#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.getRoleDefinition#KeyVaultRoleScope-String -->
+     * <pre>
+     * String roleDefinitionName = &quot;8f90b099-7361-4db6-8321-719adaf6e4ca&quot;;
+     *
+     * keyVaultAccessControlAsyncClient.getRoleDefinition&#40;KeyVaultRoleScope.GLOBAL, roleDefinitionName&#41;
+     *     .subscribe&#40;roleDefinition -&gt;
+     *         System.out.printf&#40;&quot;Retrieved role definition with name '%s' and role name '%s'.%n&quot;,
+     *             roleDefinition.getName&#40;&#41;, roleDefinition.getRoleName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.getRoleDefinition#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definition}.
      * @param roleDefinitionName The name used of the {@link KeyVaultRoleDefinition role definition}.
@@ -424,7 +494,17 @@ public Mono<KeyVaultRoleDefinition> getRoleDefinition(KeyVaultRoleScope roleScop
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a {@link KeyVaultRoleDefinition role definition}. Prints out the details of the
      * {@link Response HTTP response} and the retrieved {@link KeyVaultRoleDefinition role definition}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.getRoleDefinitionWithResponse#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.getRoleDefinitionWithResponse#KeyVaultRoleScope-String -->
+     * <pre>
+     * String myRoleDefinitionName = &quot;0877b4ee-6275-4559-89f1-c289060ef398&quot;;
+     *
+     * keyVaultAccessControlAsyncClient.getRoleDefinitionWithResponse&#40;KeyVaultRoleScope.GLOBAL, myRoleDefinitionName&#41;
+     *     .subscribe&#40;response -&gt;
+     *         System.out.printf&#40;&quot;Response successful with status code: %d. Role definition with name '%s' and role&quot;
+     *             + &quot; name '%s' was retrieved.%n&quot;, response.getStatusCode&#40;&#41;, response.getValue&#40;&#41;.getName&#40;&#41;,
+     *             response.getValue&#40;&#41;.getRoleName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.getRoleDefinitionWithResponse#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definition}.
      * @param roleDefinitionName The name of the {@link KeyVaultRoleDefinition role definition}.
@@ -488,7 +568,14 @@ Mono<Response<KeyVaultRoleDefinition>> getRoleDefinitionWithResponse(KeyVaultRol
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes a {@link KeyVaultRoleDefinition role definition}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.deleteRoleDefinition#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.deleteRoleDefinition#KeyVaultRoleScope-String -->
+     * <pre>
+     * String roleDefinitionName = &quot;e3c7c51a-8abd-4b1b-9201-48ded34d0358&quot;;
+     *
+     * keyVaultAccessControlAsyncClient.deleteRoleDefinition&#40;KeyVaultRoleScope.GLOBAL, roleDefinitionName&#41;
+     *     .subscribe&#40;unused -&gt; System.out.printf&#40;&quot;Deleted role definition with name '%s'.%n&quot;, roleDefinitionName&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.deleteRoleDefinition#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definition}.
      * Managed HSM only supports '/'.
@@ -511,7 +598,16 @@ public Mono<Void> deleteRoleDefinition(KeyVaultRoleScope roleScope, String roleD
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes a {@link KeyVaultRoleDefinition role definition}. Prints out the details of the
      * {@link Response HTTP response}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.deleteRoleDefinitionWithResponse#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.deleteRoleDefinitionWithResponse#KeyVaultRoleScope-String -->
+     * <pre>
+     * String myRoleDefinitionName = &quot;ccaafb00-31fb-40fe-9ccc-39a2ad2af082&quot;;
+     *
+     * keyVaultAccessControlAsyncClient.deleteRoleDefinitionWithResponse&#40;KeyVaultRoleScope.GLOBAL,
+     *     myRoleDefinitionName&#41;.subscribe&#40;response -&gt;
+     *         System.out.printf&#40;&quot;Response successful with status code: %d. Role definition with name '%s' was&quot;
+     *             + &quot; deleted.%n&quot;, response.getStatusCode&#40;&#41;, myRoleDefinitionName&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.deleteRoleDefinitionWithResponse#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definition}.
      * @param roleDefinitionName The name of the {@link KeyVaultRoleDefinition role definition}.
@@ -678,7 +774,17 @@ Mono<PagedResponse<KeyVaultRoleAssignment>> listRoleAssignmentsNextPage(String c
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a {@link KeyVaultRoleAssignment role assignment} with a randomly generated name. Prints out the
      * details of the created {@link KeyVaultRoleAssignment role assignment}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.createRoleAssignment#KeyVaultRoleScope-String-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.createRoleAssignment#KeyVaultRoleScope-String-String -->
+     * <pre>
+     * String roleDefinitionId = &quot;142e42c1-ab29-4dc7-9dfa-8fd7c0815128&quot;;
+     * String servicePrincipalId = &quot;07dca82e-b625-4a60-977b-859d2a162ca7&quot;;
+     *
+     * keyVaultAccessControlAsyncClient.createRoleAssignment&#40;KeyVaultRoleScope.GLOBAL, roleDefinitionId,
+     *     servicePrincipalId&#41;.subscribe&#40;roleAssignment -&gt;
+     *         System.out.printf&#40;&quot;Created role assignment with randomly generated name '%s' for principal with id&quot;
+     *             + &quot;'%s'.%n&quot;, roleAssignment.getName&#40;&#41;, roleAssignment.getProperties&#40;&#41;.getPrincipalId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.createRoleAssignment#KeyVaultRoleScope-String-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}
      * to create.
@@ -704,7 +810,18 @@ public Mono<KeyVaultRoleAssignment> createRoleAssignment(KeyVaultRoleScope roleS
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a {@link KeyVaultRoleAssignment role assignment}. Prints out the details of the created
      * {@link KeyVaultRoleAssignment role assignment}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.createRoleAssignment#KeyVaultRoleScope-String-String-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.createRoleAssignment#KeyVaultRoleScope-String-String-String -->
+     * <pre>
+     * String myRoleDefinitionId = &quot;e1ca67d0-4332-465c-b9cd-894b2834401b&quot;;
+     * String myServicePrincipalId = &quot;31af81fe-6123-4838-92c0-7c2531ec13d7&quot;;
+     * String myRoleAssignmentName = &quot;94d7827f-f8c9-4a5d-94fd-9fd2cd02d12f&quot;;
+     *
+     * keyVaultAccessControlAsyncClient.createRoleAssignment&#40;KeyVaultRoleScope.GLOBAL, myRoleDefinitionId,
+     *     myServicePrincipalId, myRoleAssignmentName&#41;.subscribe&#40;roleAssignment -&gt;
+     *         System.out.printf&#40;&quot;Created role assignment with name '%s' for principal with id '%s'.%n&quot;,
+     *             roleAssignment.getName&#40;&#41;, roleAssignment.getProperties&#40;&#41;.getPrincipalId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.createRoleAssignment#KeyVaultRoleScope-String-String-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}
      * to create.
@@ -733,7 +850,22 @@ public Mono<KeyVaultRoleAssignment> createRoleAssignment(KeyVaultRoleScope roleS
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a {@link KeyVaultRoleAssignment role assignment}. Prints out details of the
      * {@link Response HTTP response} and the created {@link KeyVaultRoleAssignment role assignment}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.createRoleAssignmentWithResponse#KeyVaultRoleScope-String-String-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.createRoleAssignmentWithResponse#KeyVaultRoleScope-String-String-String -->
+     * <pre>
+     * String someRoleDefinitionId = &quot;686b0f78-5012-4def-8a70-eba36aa54d3d&quot;;
+     * String someServicePrincipalId = &quot;345ec980-904b-4238-aafc-1eaeed3e23cf&quot;;
+     * String someRoleAssignmentName = &quot;1c79927c-6e08-4e5c-8a6c-f58c13c9bbb5&quot;;
+     *
+     * keyVaultAccessControlAsyncClient.createRoleAssignmentWithResponse&#40;KeyVaultRoleScope.GLOBAL,
+     *     someRoleDefinitionId, someServicePrincipalId, someRoleAssignmentName&#41;.subscribe&#40;response -&gt; &#123;
+     *         KeyVaultRoleAssignment createdRoleAssignment = response.getValue&#40;&#41;;
+     *
+     *         System.out.printf&#40;&quot;Response successful with status code: %d. Role assignment with name '%s' for&quot;
+     *             + &quot; principal with id '%s' was created.%n&quot;, response.getStatusCode&#40;&#41;,
+     *             createdRoleAssignment.getName&#40;&#41;, createdRoleAssignment.getProperties&#40;&#41;.getPrincipalId&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.createRoleAssignmentWithResponse#KeyVaultRoleScope-String-String-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}
      * to create.
@@ -823,7 +955,15 @@ Mono<Response<KeyVaultRoleAssignment>> createRoleAssignmentWithResponse(KeyVault
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a {@link KeyVaultRoleAssignment role assignment}. Prints out details of the retrieved
      * {@link KeyVaultRoleAssignment role assignment}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.getRoleAssignment#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.getRoleAssignment#KeyVaultRoleScope-String -->
+     * <pre>
+     * String roleAssignmentName = &quot;c5a305c0-e17a-40f5-af79-73801bdd8867&quot;;
+     *
+     * keyVaultAccessControlAsyncClient.getRoleAssignment&#40;KeyVaultRoleScope.GLOBAL, roleAssignmentName&#41;
+     *     .subscribe&#40;roleAssignment -&gt;
+     *         System.out.printf&#40;&quot;Retrieved role assignment with name '%s'.%n&quot;, roleAssignment.getName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.getRoleAssignment#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}.
      * @param roleAssignmentName The name used of the {@link KeyVaultRoleAssignment role assignment}.
@@ -846,7 +986,16 @@ public Mono<KeyVaultRoleAssignment> getRoleAssignment(KeyVaultRoleScope roleScop
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a {@link KeyVaultRoleAssignment role assignment}. Prints out details of the
      * {@link Response HTTP response} and the retrieved {@link KeyVaultRoleAssignment role assignment}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.getRoleAssignmentWithResponse#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.getRoleAssignmentWithResponse#KeyVaultRoleScope-String -->
+     * <pre>
+     * String myRoleAssignmentName = &quot;76ccbf52-4d49-4fcc-ad3f-044c254be114&quot;;
+     *
+     * keyVaultAccessControlAsyncClient.getRoleAssignmentWithResponse&#40;KeyVaultRoleScope.GLOBAL, myRoleAssignmentName&#41;
+     *     .subscribe&#40;response -&gt;
+     *         System.out.printf&#40;&quot;Response successful with status code: %d. Role assignment with name '%s' was&quot;
+     *             + &quot; retrieved.%n&quot;, response.getStatusCode&#40;&#41;, response.getValue&#40;&#41;.getName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.getRoleAssignmentWithResponse#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}.
      * @param roleAssignmentName The name of the {@link KeyVaultRoleAssignment role assignment}.
@@ -910,7 +1059,15 @@ Mono<Response<KeyVaultRoleAssignment>> getRoleAssignmentWithResponse(KeyVaultRol
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes a {@link KeyVaultRoleAssignment role assignment}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.deleteRoleAssignment#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.deleteRoleAssignment#KeyVaultRoleScope-String -->
+     * <pre>
+     * String roleAssignmentName = &quot;f05d11ce-578a-4524-950c-fb4c53e5fb96&quot;;
+     *
+     * keyVaultAccessControlAsyncClient.deleteRoleAssignment&#40;KeyVaultRoleScope.GLOBAL, roleAssignmentName&#41;
+     *     .subscribe&#40;unused -&gt;
+     *         System.out.printf&#40;&quot;Deleted role assignment with name '%s'.%n&quot;, roleAssignmentName&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.deleteRoleAssignment#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}.
      * @param roleAssignmentName The name of the {@link KeyVaultRoleAssignment role assignment}.
@@ -932,7 +1089,16 @@ public Mono<Void> deleteRoleAssignment(KeyVaultRoleScope roleScope, String roleA
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes a {@link KeyVaultRoleAssignment role assignment}. Prints out details of the
      * {@link Response HTTP response}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.deleteRoleAssignmentWithResponse#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.deleteRoleAssignmentWithResponse#KeyVaultRoleScope-String -->
+     * <pre>
+     * String myRoleAssignmentName = &quot;06aaea13-e4f3-4d3f-8a93-088dff6e90ed&quot;;
+     *
+     * keyVaultAccessControlAsyncClient.deleteRoleAssignmentWithResponse&#40;KeyVaultRoleScope.GLOBAL,
+     *     myRoleAssignmentName&#41;.subscribe&#40;response -&gt;
+     *         System.out.printf&#40;&quot;Response successful with status code: %d. Role assignment with name '%s' was&quot;
+     *             + &quot; deleted.%n&quot;, response.getStatusCode&#40;&#41;, myRoleAssignmentName&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.deleteRoleAssignmentWithResponse#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}.
      * @param roleAssignmentName The name of the {@link KeyVaultRoleAssignment role assignment}.
diff --git a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAccessControlClient.java b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAccessControlClient.java
index 4d63af822a605..cb8e9e4cfeb66 100644
--- a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAccessControlClient.java
+++ b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAccessControlClient.java
@@ -28,7 +28,14 @@
  * method on a {@link KeyVaultAccessControlClientBuilder} object.</p>
  *
  * <p><strong>Samples to construct a sync client</strong></p>
- * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.instantiation -->
+ * <pre>
+ * KeyVaultAccessControlClient keyVaultAccessControlClient = new KeyVaultAccessControlClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myaccount.managedhsm.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.instantiation -->
  *
  * @see KeyVaultAccessControlClientBuilder
  */
@@ -61,7 +68,15 @@ public String getVaultUrl() {
      * <p><strong>Code Samples</strong></p>
      * <p>Lists all {@link KeyVaultRoleDefinition role definitions}. Prints out the details of the retrieved
      * {@link KeyVaultRoleDefinition role definitions}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.listRoleDefinitions#KeyVaultRoleScope}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.listRoleDefinitions#KeyVaultRoleScope -->
+     * <pre>
+     * PagedIterable&lt;KeyVaultRoleDefinition&gt; roleDefinitions =
+     *     keyVaultAccessControlClient.listRoleDefinitions&#40;KeyVaultRoleScope.GLOBAL&#41;;
+     *
+     * roleDefinitions.forEach&#40;roleDefinition -&gt;
+     *     System.out.printf&#40;&quot;Retrieved role definition with name '%s'.%n&quot;, roleDefinition.getName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.listRoleDefinitions#KeyVaultRoleScope -->
      *
      * @param roleScope The {@link KeyVaultRoleScope roleScope} of the {@link KeyVaultRoleDefinition role definitions}.
      *
@@ -83,7 +98,15 @@ public PagedIterable<KeyVaultRoleDefinition> listRoleDefinitions(KeyVaultRoleSco
      * <p><strong>Code Samples</strong></p>
      * <p>Lists all {@link KeyVaultRoleDefinition role definitions}. Prints out the details of the retrieved
      * {@link KeyVaultRoleDefinition role definitions}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.listRoleDefinitions#KeyVaultRoleScope-Context}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.listRoleDefinitions#KeyVaultRoleScope-Context -->
+     * <pre>
+     * PagedIterable&lt;KeyVaultRoleDefinition&gt; keyVaultRoleDefinitions =
+     *     keyVaultAccessControlClient.listRoleDefinitions&#40;KeyVaultRoleScope.GLOBAL, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * keyVaultRoleDefinitions.forEach&#40;roleDefinition -&gt;
+     *     System.out.printf&#40;&quot;Retrieved role definition with name '%s'.%n&quot;, roleDefinition.getName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.listRoleDefinitions#KeyVaultRoleScope-Context -->
      *
      * @param roleScope The {@link KeyVaultRoleScope scope} of the {@link KeyVaultRoleDefinition role definitions}.
      * @param context Additional {@link Context} that is passed through the HTTP pipeline during the service call.
@@ -105,7 +128,14 @@ public PagedIterable<KeyVaultRoleDefinition> listRoleDefinitions(KeyVaultRoleSco
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a {@link KeyVaultRoleDefinition role definition} with a randomly generated name. Prints out the
      * details of the created {@link KeyVaultRoleDefinition role definition}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.setRoleDefinition#KeyVaultRoleScope}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.setRoleDefinition#KeyVaultRoleScope -->
+     * <pre>
+     * KeyVaultRoleDefinition roleDefinition = keyVaultAccessControlClient.setRoleDefinition&#40;KeyVaultRoleScope.GLOBAL&#41;;
+     *
+     * System.out.printf&#40;&quot;Created role definition with randomly generated name '%s' and role name '%s'.%n&quot;,
+     *     roleDefinition.getName&#40;&#41;, roleDefinition.getRoleName&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.setRoleDefinition#KeyVaultRoleScope -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definition}.
      * Managed HSM only supports '/'.
@@ -127,7 +157,16 @@ public KeyVaultRoleDefinition setRoleDefinition(KeyVaultRoleScope roleScope) {
      * <p><strong>Code Samples</strong></p>
      * <p>Creates or updates a {@link KeyVaultRoleDefinition role definition} with a given generated name. Prints out
      * the details of the created {@link KeyVaultRoleDefinition role definition}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.setRoleDefinition#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.setRoleDefinition#KeyVaultRoleScope-String -->
+     * <pre>
+     * String myRoleDefinitionName = &quot;b67c3cf4-cbfd-451e-89ab-97c01906a2e0&quot;;
+     * KeyVaultRoleDefinition myRoleDefinition =
+     *     keyVaultAccessControlClient.setRoleDefinition&#40;KeyVaultRoleScope.GLOBAL, myRoleDefinitionName&#41;;
+     *
+     * System.out.printf&#40;&quot;Set role definition with name '%s' and role name '%s'.%n&quot;, myRoleDefinition.getName&#40;&#41;,
+     *     myRoleDefinition.getRoleName&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.setRoleDefinition#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definition}.
      * Managed HSM only supports '/'.
@@ -151,7 +190,40 @@ public KeyVaultRoleDefinition setRoleDefinition(KeyVaultRoleScope roleScope, Str
      * <p><strong>Code Samples</strong></p>
      * <p>Creates or updates a {@link KeyVaultRoleDefinition role definition}. Prints out the details of the
      * {@link Response HTTP response} and the created {@link KeyVaultRoleDefinition role definition}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.setRoleDefinitionWithResponse#SetRoleDefinitionOptions-Context}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.setRoleDefinitionWithResponse#SetRoleDefinitionOptions-Context -->
+     * <pre>
+     * String roleDefinitionName = &quot;a86990e4-2080-4666-bd36-6e1664d3706f&quot;;
+     *
+     * List&lt;KeyVaultRoleScope&gt; assignableScopes = new ArrayList&lt;&gt;&#40;&#41;;
+     * assignableScopes.add&#40;KeyVaultRoleScope.GLOBAL&#41;;
+     * assignableScopes.add&#40;KeyVaultRoleScope.KEYS&#41;;
+     *
+     * List&lt;KeyVaultDataAction&gt; dataActions = new ArrayList&lt;&gt;&#40;&#41;;
+     * dataActions.add&#40;KeyVaultDataAction.START_HSM_RESTORE&#41;;
+     * dataActions.add&#40;KeyVaultDataAction.START_HSM_BACKUP&#41;;
+     * dataActions.add&#40;KeyVaultDataAction.READ_HSM_BACKUP_STATUS&#41;;
+     * dataActions.add&#40;KeyVaultDataAction.READ_HSM_RESTORE_STATUS&#41;;
+     * dataActions.add&#40;KeyVaultDataAction.BACKUP_HSM_KEYS&#41;;
+     * dataActions.add&#40;KeyVaultDataAction.RESTORE_HSM_KEYS&#41;;
+     *
+     * List&lt;KeyVaultPermission&gt; permissions = new ArrayList&lt;&gt;&#40;&#41;;
+     * permissions.add&#40;new KeyVaultPermission&#40;null, null, dataActions, null&#41;&#41;;
+     *
+     * SetRoleDefinitionOptions setRoleDefinitionOptions =
+     *     new SetRoleDefinitionOptions&#40;KeyVaultRoleScope.GLOBAL, roleDefinitionName&#41;
+     *         .setRoleName&#40;&quot;Backup and Restore Role Definition&quot;&#41;
+     *         .setDescription&#40;&quot;Can backup and restore a whole Managed HSM, as well as individual keys.&quot;&#41;
+     *         .setAssignableScopes&#40;assignableScopes&#41;
+     *         .setPermissions&#40;permissions&#41;;
+     *
+     * Response&lt;KeyVaultRoleDefinition&gt; response =
+     *     keyVaultAccessControlClient.setRoleDefinitionWithResponse&#40;setRoleDefinitionOptions,
+     *         new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Response successful with status code: %d. Role definition with name '%s' and role name '%s' &quot;
+     *     + &quot;was set.%n&quot;, response.getStatusCode&#40;&#41;, response.getValue&#40;&#41;.getName&#40;&#41;, response.getValue&#40;&#41;.getRoleName&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.setRoleDefinitionWithResponse#SetRoleDefinitionOptions-Context -->
      *
      * @param options Object representing the configurable options to create or update a
      * {@link KeyVaultRoleDefinition role definition}.
@@ -176,7 +248,16 @@ public Response<KeyVaultRoleDefinition> setRoleDefinitionWithResponse(SetRoleDef
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a {@link KeyVaultRoleDefinition role definition}. Prints out the details of the retrieved
      * {@link KeyVaultRoleDefinition role definition}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.getRoleDefinition#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.getRoleDefinition#KeyVaultRoleScope-String -->
+     * <pre>
+     * String roleDefinitionName = &quot;de8df120-987e-4477-b9cc-570fd219a62c&quot;;
+     * KeyVaultRoleDefinition roleDefinition =
+     *     keyVaultAccessControlClient.getRoleDefinition&#40;KeyVaultRoleScope.GLOBAL, roleDefinitionName&#41;;
+     *
+     * System.out.printf&#40;&quot;Retrieved role definition with name '%s' and role name '%s'.%n&quot;, roleDefinition.getName&#40;&#41;,
+     *     roleDefinition.getRoleName&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.getRoleDefinition#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definition}.
      * @param roleDefinitionName The name used of the {@link KeyVaultRoleDefinition role definition}.
@@ -199,7 +280,18 @@ public KeyVaultRoleDefinition getRoleDefinition(KeyVaultRoleScope roleScope, Str
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a {@link KeyVaultRoleDefinition role definition}. Prints out the details of the
      * {@link Response HTTP response} and the retrieved {@link KeyVaultRoleDefinition role definition}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.getRoleDefinitionWithResponse#KeyVaultRoleScope-String-Context}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.getRoleDefinitionWithResponse#KeyVaultRoleScope-String-Context -->
+     * <pre>
+     * String myRoleDefinitionName = &quot;cb15ef18-b32c-4224-b048-3a91cd68acc3&quot;;
+     * Response&lt;KeyVaultRoleDefinition&gt; response =
+     *     keyVaultAccessControlClient.getRoleDefinitionWithResponse&#40;KeyVaultRoleScope.GLOBAL, myRoleDefinitionName,
+     *         new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Response successful with status code: %d. Role definition with name '%s' and role name '%s'&quot;
+     *     + &quot; was retrieved.%n&quot;, response.getStatusCode&#40;&#41;, response.getValue&#40;&#41;.getName&#40;&#41;,
+     *     response.getValue&#40;&#41;.getRoleName&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.getRoleDefinitionWithResponse#KeyVaultRoleScope-String-Context -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definition}.
      * @param roleDefinitionName The name of the {@link KeyVaultRoleDefinition role definition}.
@@ -224,7 +316,15 @@ public Response<KeyVaultRoleDefinition> getRoleDefinitionWithResponse(KeyVaultRo
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes a {@link KeyVaultRoleDefinition role definition}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.deleteRoleDefinition#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.deleteRoleDefinition#KeyVaultRoleScope-String -->
+     * <pre>
+     * String roleDefinitionName = &quot;6a709e6e-8964-4012-a99b-6b0131e8ce40&quot;;
+     *
+     * keyVaultAccessControlClient.deleteRoleDefinition&#40;KeyVaultRoleScope.GLOBAL, roleDefinitionName&#41;;
+     *
+     * System.out.printf&#40;&quot;Deleted role definition with name '%s'.%n&quot;, roleDefinitionName&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.deleteRoleDefinition#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definition}.
      * Managed HSM only supports '/'.
@@ -245,7 +345,17 @@ public void deleteRoleDefinition(KeyVaultRoleScope roleScope, String roleDefinit
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes a {@link KeyVaultRoleDefinition role definition}. Prints out the details of the
      * {@link Response HTTP response}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.deleteRoleDefinitionWithResponse#KeyVaultRoleScope-String-Context}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.deleteRoleDefinitionWithResponse#KeyVaultRoleScope-String-Context -->
+     * <pre>
+     * String myRoleDefinitionName = &quot;6b2d0b58-4108-44d6-b7e0-4fd02f77fe7e&quot;;
+     * Response&lt;Void&gt; response =
+     *     keyVaultAccessControlClient.deleteRoleDefinitionWithResponse&#40;KeyVaultRoleScope.GLOBAL, myRoleDefinitionName,
+     *         new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Response successful with status code: %d. Role definition with name '%s' was deleted.%n&quot;,
+     *     response.getStatusCode&#40;&#41;, myRoleDefinitionName&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.deleteRoleDefinitionWithResponse#KeyVaultRoleScope-String-Context -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleDefinition role definition}.
      * @param roleDefinitionName The name of the {@link KeyVaultRoleDefinition role definition}.
@@ -271,7 +381,15 @@ public Response<Void> deleteRoleDefinitionWithResponse(KeyVaultRoleScope roleSco
      * <p><strong>Code Samples</strong></p>
      * <p>Lists all {@link KeyVaultRoleAssignment role assignments}. Prints out the details of the retrieved
      * {@link KeyVaultRoleAssignment role assignments}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.listRoleAssignments#KeyVaultRoleScope}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.listRoleAssignments#KeyVaultRoleScope -->
+     * <pre>
+     * PagedIterable&lt;KeyVaultRoleAssignment&gt; roleAssignments =
+     *     keyVaultAccessControlClient.listRoleAssignments&#40;KeyVaultRoleScope.GLOBAL&#41;;
+     *
+     * roleAssignments.forEach&#40;roleAssignment -&gt;
+     *     System.out.printf&#40;&quot;Retrieved role assignment with name '%s'.%n&quot;, roleAssignment.getName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.listRoleAssignments#KeyVaultRoleScope -->
      *
      * @param roleScope The {@link KeyVaultRoleScope scope} of the {@link KeyVaultRoleAssignment role assignment}.
      *
@@ -293,7 +411,15 @@ public PagedIterable<KeyVaultRoleAssignment> listRoleAssignments(KeyVaultRoleSco
      * <p><strong>Code Samples</strong></p>
      * <p>Lists all {@link KeyVaultRoleAssignment role assignments}. Prints out the details of the retrieved
      * {@link KeyVaultRoleAssignment role assignments}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.listRoleAssignments#KeyVaultRoleScope-Context}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.listRoleAssignments#KeyVaultRoleScope-Context -->
+     * <pre>
+     * PagedIterable&lt;KeyVaultRoleAssignment&gt; keyVaultRoleAssignments =
+     *     keyVaultAccessControlClient.listRoleAssignments&#40;KeyVaultRoleScope.GLOBAL, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * keyVaultRoleAssignments.forEach&#40;roleAssignment -&gt;
+     *     System.out.printf&#40;&quot;Retrieved role assignment with name '%s'.%n&quot;, roleAssignment.getName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.listRoleAssignments#KeyVaultRoleScope-Context -->
      *
      * @param roleScope The {@link KeyVaultRoleScope scope} of the {@link KeyVaultRoleAssignment role assignment}.
      * @param context Additional context that is passed through the HTTP pipeline during the service call.
@@ -315,7 +441,18 @@ public PagedIterable<KeyVaultRoleAssignment> listRoleAssignments(KeyVaultRoleSco
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a {@link KeyVaultRoleAssignment role assignment} with a randomly generated name. Prints out the
      * details of the created {@link KeyVaultRoleAssignment role assignment}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.createRoleAssignment#KeyVaultRoleScope-String-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.createRoleAssignment#KeyVaultRoleScope-String-String -->
+     * <pre>
+     * String roleDefinitionId = &quot;b0b43a39-920c-475b-b34c-32ecc2bbb0ea&quot;;
+     * String servicePrincipalId = &quot;169d6a86-61b3-4615-ac7e-2da09edfeed4&quot;;
+     * KeyVaultRoleAssignment roleAssignment =
+     *     keyVaultAccessControlClient.createRoleAssignment&#40;KeyVaultRoleScope.GLOBAL, roleDefinitionId,
+     *         servicePrincipalId&#41;;
+     *
+     * System.out.printf&#40;&quot;Created role assignment with randomly generated name '%s' for principal with id '%s'.%n&quot;,
+     *     roleAssignment.getName&#40;&#41;, roleAssignment.getProperties&#40;&#41;.getPrincipalId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.createRoleAssignment#KeyVaultRoleScope-String-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}
      * to create.
@@ -342,7 +479,19 @@ public KeyVaultRoleAssignment createRoleAssignment(KeyVaultRoleScope roleScope,
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a {@link KeyVaultRoleAssignment role assignment}. Prints out the details of the created
      * {@link KeyVaultRoleAssignment role assignment}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.createRoleAssignment#KeyVaultRoleScope-String-String-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.createRoleAssignment#KeyVaultRoleScope-String-String-String -->
+     * <pre>
+     * String myRoleDefinitionId = &quot;c7d4f70f-944d-494a-a73e-ff62fe7f04da&quot;;
+     * String myServicePrincipalId = &quot;4196fc8f-7312-46b9-9a08-05bf44fdff37&quot;;
+     * String myRoleAssignmentName = &quot;d80e9366-47a6-4f42-ba84-f2eefb084972&quot;;
+     * KeyVaultRoleAssignment myRoleAssignment =
+     *     keyVaultAccessControlClient.createRoleAssignment&#40;KeyVaultRoleScope.GLOBAL, myRoleDefinitionId,
+     *         myServicePrincipalId, myRoleAssignmentName&#41;;
+     *
+     * System.out.printf&#40;&quot;Created role assignment with name '%s' for principal with id '%s'.%n&quot;,
+     *     myRoleAssignment.getName&#40;&#41;, myRoleAssignment.getProperties&#40;&#41;.getPrincipalId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.createRoleAssignment#KeyVaultRoleScope-String-String-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}
      * to create.
@@ -371,7 +520,22 @@ public KeyVaultRoleAssignment createRoleAssignment(KeyVaultRoleScope roleScope,
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a {@link KeyVaultRoleAssignment role assignment}. Prints out details of the
      * {@link Response HTTP response} and the created {@link KeyVaultRoleAssignment role assignment}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.createRoleAssignmentWithResponse#KeyVaultRoleScope-String-String-String-Context}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.createRoleAssignmentWithResponse#KeyVaultRoleScope-String-String-String-Context -->
+     * <pre>
+     * String someRoleDefinitionId = &quot;11385c39-5efa-4e5f-8748-055aa51d4d23&quot;;
+     * String someServicePrincipalId = &quot;eab943f7-a204-4434-9681-ef2cc0c85b51&quot;;
+     * String someRoleAssignmentName = &quot;4d95e0ea-4808-43a4-b7f9-d9e61dba7ea9&quot;;
+     *
+     * Response&lt;KeyVaultRoleAssignment&gt; response =
+     *     keyVaultAccessControlClient.createRoleAssignmentWithResponse&#40;KeyVaultRoleScope.GLOBAL, someRoleDefinitionId,
+     *         someServicePrincipalId, someRoleAssignmentName, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     * KeyVaultRoleAssignment createdRoleAssignment = response.getValue&#40;&#41;;
+     *
+     * System.out.printf&#40;&quot;Response successful with status code: %d. Role assignment with name '%s' for principal with&quot;
+     *     + &quot;id '%s' was created.%n&quot;, response.getStatusCode&#40;&#41;, createdRoleAssignment.getName&#40;&#41;,
+     *     createdRoleAssignment.getProperties&#40;&#41;.getPrincipalId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.createRoleAssignmentWithResponse#KeyVaultRoleScope-String-String-String-Context -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}
      * to create.
@@ -406,7 +570,15 @@ public Response<KeyVaultRoleAssignment> createRoleAssignmentWithResponse(KeyVaul
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes a {@link KeyVaultRoleAssignment role assignment}. Prints out details of the retrieved
      * {@link KeyVaultRoleAssignment role assignment}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.getRoleAssignment#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.getRoleAssignment#KeyVaultRoleScope-String -->
+     * <pre>
+     * String roleAssignmentName = &quot;06d1ae8b-0791-4f02-b976-f631251f5a95&quot;;
+     * KeyVaultRoleAssignment roleAssignment =
+     *     keyVaultAccessControlClient.getRoleAssignment&#40;KeyVaultRoleScope.GLOBAL, roleAssignmentName&#41;;
+     *
+     * System.out.printf&#40;&quot;Retrieved role assignment with name '%s'.%n&quot;, roleAssignment.getName&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.getRoleAssignment#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}.
      * @param roleAssignmentName The name of the {@link KeyVaultRoleAssignment role assignment}.
@@ -429,7 +601,17 @@ public KeyVaultRoleAssignment getRoleAssignment(KeyVaultRoleScope roleScope, Str
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes a {@link KeyVaultRoleAssignment role assignment}. Prints out details of the
      * {@link Response HTTP response} and the retrieved {@link KeyVaultRoleAssignment role assignment}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.getRoleAssignmentWithResponse#KeyVaultRoleScope-String-Context}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.getRoleAssignmentWithResponse#KeyVaultRoleScope-String-Context -->
+     * <pre>
+     * String myRoleAssignmentName = &quot;b4a970d5-c581-4760-bba5-61d3d5aa24f9&quot;;
+     * Response&lt;KeyVaultRoleAssignment&gt; response =
+     *     keyVaultAccessControlClient.getRoleAssignmentWithResponse&#40;KeyVaultRoleScope.GLOBAL, myRoleAssignmentName,
+     *         new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Response successful with status code: %d. Role assignment with name '%s' was retrieved.%n&quot;,
+     *     response.getStatusCode&#40;&#41;, response.getValue&#40;&#41;.getName&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.getRoleAssignmentWithResponse#KeyVaultRoleScope-String-Context -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}.
      * @param roleAssignmentName The name of the {@link KeyVaultRoleAssignment role assignment}.
@@ -453,7 +635,15 @@ public Response<KeyVaultRoleAssignment> getRoleAssignmentWithResponse(KeyVaultRo
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes a {@link KeyVaultRoleAssignment role assignment}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.deleteRoleAssignment#KeyVaultRoleScope-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.deleteRoleAssignment#KeyVaultRoleScope-String -->
+     * <pre>
+     * String roleAssignmentName = &quot;c3ed874a-64a9-4a87-8581-2a1ad84b9ddb&quot;;
+     *
+     * keyVaultAccessControlClient.deleteRoleAssignment&#40;KeyVaultRoleScope.GLOBAL, roleAssignmentName&#41;;
+     *
+     * System.out.printf&#40;&quot;Deleted role assignment with name '%s'.%n&quot;, roleAssignmentName&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.deleteRoleAssignment#KeyVaultRoleScope-String -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}.
      * @param roleAssignmentName The name of the {@link KeyVaultRoleAssignment role assignment}.
@@ -473,7 +663,17 @@ public void deleteRoleAssignment(KeyVaultRoleScope roleScope, String roleAssignm
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes a {@link KeyVaultRoleAssignment role assignment}. Prints out details of the
      * {@link Response HTTP response}.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.deleteRoleAssignmentWithResponse#KeyVaultRoleScope-String-Context}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.deleteRoleAssignmentWithResponse#KeyVaultRoleScope-String-Context -->
+     * <pre>
+     * String myRoleAssignmentName = &quot;8ac293e1-1ac8-4a71-b254-7caf9f7c2646&quot;;
+     * Response&lt;Void&gt; response =
+     *     keyVaultAccessControlClient.deleteRoleAssignmentWithResponse&#40;KeyVaultRoleScope.GLOBAL, myRoleAssignmentName,
+     *         new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Response successful with status code: %d. Role assignment with name '%s' was deleted.%n&quot;,
+     *     response.getStatusCode&#40;&#41;, myRoleAssignmentName&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.deleteRoleAssignmentWithResponse#KeyVaultRoleScope-String-Context -->
      *
      * @param roleScope The {@link KeyVaultRoleScope role scope} of the {@link KeyVaultRoleAssignment role assignment}.
      * @param roleAssignmentName The name of the {@link KeyVaultRoleAssignment role assignment}.
diff --git a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAccessControlClientBuilder.java b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAccessControlClientBuilder.java
index cdd911a94263c..a62746bc8a289 100644
--- a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAccessControlClientBuilder.java
+++ b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAccessControlClientBuilder.java
@@ -43,9 +43,23 @@
  * an {@link KeyVaultAccessControlAsyncClient} are {@link String vaultUrl} and {@link TokenCredential credential}.</p>
  *
  * <p><strong>Samples to construct a sync client</strong></p>
- * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlClient.instantiation -->
+ * <pre>
+ * KeyVaultAccessControlClient keyVaultAccessControlClient = new KeyVaultAccessControlClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myaccount.managedhsm.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlClient.instantiation -->
  * <p><strong>Samples to construct an async client</strong></p>
- * {@codesnippet com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.instantiation -->
+ * <pre>
+ * KeyVaultAccessControlAsyncClient keyVaultAccessControlAsyncClient = new KeyVaultAccessControlClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myaccount.managedhsm.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.administration.keyVaultAccessControlAsyncClient.instantiation -->
  *
  * @see KeyVaultAccessControlClient
  * @see KeyVaultAccessControlAsyncClient
diff --git a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAdministrationServiceVersion.java b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAdministrationServiceVersion.java
index 7a92b7357de9d..9a571cde4ecb2 100644
--- a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAdministrationServiceVersion.java
+++ b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultAdministrationServiceVersion.java
@@ -9,7 +9,14 @@
  * The versions of Azure Key Vault Administration service supported by this client library.
  */
 public enum KeyVaultAdministrationServiceVersion implements ServiceVersion {
+    /**
+     * Service version {@code 7.2}.
+     */
     V7_2("7.2"),
+
+    /**
+     * Service version {@code 7.3-preview}.
+     */
     V7_3_PREVIEW("7.3-preview");
 
     private final String version;
diff --git a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultBackupAsyncClient.java b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultBackupAsyncClient.java
index 8e590f8e20610..6733da603051e 100644
--- a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultBackupAsyncClient.java
+++ b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultBackupAsyncClient.java
@@ -57,7 +57,14 @@
  * method on a {@link KeyVaultBackupClientBuilder} object.</p>
  *
  * <p><strong>Samples to construct an async client</strong></p>
- * {@codesnippet com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.instantiation -->
+ * <pre>
+ * KeyVaultBackupAsyncClient keyVaultBackupAsyncClient = new KeyVaultBackupClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myaccount.managedhsm.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.instantiation -->
  *
  * @see KeyVaultBackupClientBuilder
  */
@@ -141,7 +148,23 @@ HttpPipeline getHttpPipeline() {
      * <p>Starts a {@link KeyVaultBackupOperation backup operation}, polls for its status and waits for it to complete.
      * Prints out the details of the operation's final result in case of success or prints out details of an error in
      * case the operation fails.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.beginBackup#String-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.beginBackup#String-String -->
+     * <pre>
+     * String blobStorageUrl = &quot;https:&#47;&#47;myaccount.blob.core.windows.net&#47;myContainer&quot;;
+     * String sasToken = &quot;sv=2020-02-10&amp;ss=b&amp;srt=o&amp;sp=rwdlactfx&amp;se=2021-06-17T07:13:07Z&amp;st=2021-06-16T23:13:07Z&quot;
+     *     + &quot;&amp;spr=https&amp;sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D&quot;;
+     *
+     * client.beginBackup&#40;blobStorageUrl, sasToken&#41;
+     *     .setPollInterval&#40;Duration.ofSeconds&#40;1&#41;&#41; &#47;&#47; You can set a custom polling interval.
+     *     .doOnError&#40;e -&gt; System.out.printf&#40;&quot;Backup failed with error: %s.%n&quot;, e.getMessage&#40;&#41;&#41;&#41;
+     *     .doOnNext&#40;pollResponse -&gt;
+     *         System.out.printf&#40;&quot;The current status of the operation is: %s.%n&quot;, pollResponse.getStatus&#40;&#41;&#41;&#41;
+     *     .filter&#40;pollResponse -&gt; pollResponse.getStatus&#40;&#41; == LongRunningOperationStatus.SUCCESSFULLY_COMPLETED&#41;
+     *     .flatMap&#40;AsyncPollResponse::getFinalResult&#41;
+     *     .subscribe&#40;folderUrl -&gt;
+     *         System.out.printf&#40;&quot;Backup completed. The storage location of this backup is: %s.%n&quot;, folderUrl&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.beginBackup#String-String -->
      *
      * @param blobStorageUrl The URL for the Blob Storage resource where the backup will be located.
      * @param sasToken A Shared Access Signature (SAS) token to authorize access to the blob.
@@ -303,7 +326,22 @@ private static LongRunningOperationStatus toLongRunningOperationStatus(String op
      * <p><strong>Code Samples</strong></p>
      * <p>Starts a {@link KeyVaultRestoreOperation restore operation}, polls for its status and waits for it to
      * complete. Prints out error details in case the operation fails.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.beginRestore#String-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.beginRestore#String-String -->
+     * <pre>
+     * String folderUrl = &quot;https:&#47;&#47;myaccount.blob.core.windows.net&#47;myContainer&#47;mhsm-myaccount-2020090117323313&quot;;
+     * String sasToken = &quot;sv=2020-02-10&amp;ss=b&amp;srt=o&amp;sp=rwdlactfx&amp;se=2021-06-17T07:13:07Z&amp;st=2021-06-16T23:13:07Z&quot;
+     *     + &quot;&amp;spr=https&amp;sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D&quot;;
+     *
+     * client.beginRestore&#40;folderUrl, sasToken&#41;
+     *     .setPollInterval&#40;Duration.ofSeconds&#40;1&#41;&#41; &#47;&#47; You can set a custom polling interval.
+     *     .doOnError&#40;e -&gt; System.out.printf&#40;&quot;Restore failed with error: %s.%n&quot;, e.getMessage&#40;&#41;&#41;&#41;
+     *     .doOnNext&#40;pollResponse -&gt;
+     *         System.out.printf&#40;&quot;The current status of the operation is: %s.%n&quot;, pollResponse.getStatus&#40;&#41;&#41;&#41;
+     *     .filter&#40;pollResponse -&gt; pollResponse.getStatus&#40;&#41; == LongRunningOperationStatus.SUCCESSFULLY_COMPLETED&#41;
+     *     .flatMap&#40;AsyncPollResponse::getFinalResult&#41;
+     *     .subscribe&#40;unused -&gt; System.out.printf&#40;&quot;Backup restored successfully.%n&quot;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.beginRestore#String-String -->
      *
      * @param folderUrl The URL for the Blob Storage resource where the backup is located, including the path to
      * the blob container where the backup resides. This would be the exact value that is returned as the result of a
@@ -449,7 +487,23 @@ private static Mono<PollResponse<KeyVaultRestoreOperation>> processRestoreOperat
      * <p><strong>Code Samples</strong></p>
      * <p>Starts a {@link KeyVaultSelectiveKeyRestoreOperation selective key restore operation}, polls for its status
      * and waits for it to complete. Prints out error details in case the operation fails.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.beginSelectiveKeyRestore#String-String-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.beginSelectiveKeyRestore#String-String-String -->
+     * <pre>
+     * String folderUrl = &quot;https:&#47;&#47;myaccount.blob.core.windows.net&#47;myContainer&#47;mhsm-myaccount-2020090117323313&quot;;
+     * String sasToken = &quot;sv=2020-02-10&amp;ss=b&amp;srt=o&amp;sp=rwdlactfx&amp;se=2021-06-17T07:13:07Z&amp;st=2021-06-16T23:13:07Z&quot;
+     *     + &quot;&amp;spr=https&amp;sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D&quot;;
+     * String keyName = &quot;myKey&quot;;
+     *
+     * client.beginSelectiveKeyRestore&#40;folderUrl, sasToken, keyName&#41;
+     *     .setPollInterval&#40;Duration.ofSeconds&#40;1&#41;&#41; &#47;&#47; You can set a custom polling interval.
+     *     .doOnError&#40;e -&gt; System.out.printf&#40;&quot;Key restoration failed with error: %s.%n&quot;, e.getMessage&#40;&#41;&#41;&#41;
+     *     .doOnNext&#40;pollResponse -&gt;
+     *         System.out.printf&#40;&quot;The current status of the operation is: %s.%n&quot;, pollResponse.getStatus&#40;&#41;&#41;&#41;
+     *     .filter&#40;pollResponse -&gt; pollResponse.getStatus&#40;&#41; == LongRunningOperationStatus.SUCCESSFULLY_COMPLETED&#41;
+     *     .flatMap&#40;AsyncPollResponse::getFinalResult&#41;
+     *     .subscribe&#40;unused -&gt; System.out.printf&#40;&quot;Key restored successfully.%n&quot;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.beginSelectiveKeyRestore#String-String-String -->
      *
      * @param keyName The name of the key to be restored.
      * @param folderUrl The URL for the Blob Storage resource where the backup is located, including the path to
diff --git a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultBackupClient.java b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultBackupClient.java
index 2c7fae0e6a2d0..c3020b71b2410 100644
--- a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultBackupClient.java
+++ b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultBackupClient.java
@@ -22,7 +22,14 @@
  * method on a {@link KeyVaultBackupClientBuilder} object.</p>
  *
  * <p><strong>Samples to construct a sync client</strong></p>
- * {@codesnippet com.azure.security.keyvault.administration.keyVaultBackupClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.administration.keyVaultBackupClient.instantiation -->
+ * <pre>
+ * KeyVaultBackupClient keyVaultBackupClient = new KeyVaultBackupClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myaccount.managedhsm.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.administration.keyVaultBackupClient.instantiation -->
  *
  * @see KeyVaultBackupClientBuilder
  */
@@ -55,7 +62,31 @@ public String getVaultUrl() {
      * <p>Starts a {@link KeyVaultBackupOperation backup operation}, polls for its status and waits for it to complete.
      * Prints out the details of the operation's final result in case of success or prints out error details in case the
      * operation fails.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultBackupClient.beginBackup#String-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultBackupClient.beginBackup#String-String -->
+     * <pre>
+     * String blobStorageUrl = &quot;https:&#47;&#47;myaccount.blob.core.windows.net&#47;myContainer&quot;;
+     * String sasToken = &quot;sv=2020-02-10&amp;ss=b&amp;srt=o&amp;sp=rwdlactfx&amp;se=2021-06-17T07:13:07Z&amp;st=2021-06-16T23:13:07Z&quot;
+     *     + &quot;&amp;spr=https&amp;sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D&quot;;
+     *
+     * SyncPoller&lt;KeyVaultBackupOperation, String&gt; backupPoller = client.beginBackup&#40;blobStorageUrl, sasToken&#41;;
+     *
+     * PollResponse&lt;KeyVaultBackupOperation&gt; pollResponse = backupPoller.poll&#40;&#41;;
+     *
+     * System.out.printf&#40;&quot;The current status of the operation is: %s.%n&quot;, pollResponse.getStatus&#40;&#41;&#41;;
+     *
+     * PollResponse&lt;KeyVaultBackupOperation&gt; finalPollResponse = backupPoller.waitForCompletion&#40;&#41;;
+     *
+     * if &#40;finalPollResponse.getStatus&#40;&#41; == LongRunningOperationStatus.SUCCESSFULLY_COMPLETED&#41; &#123;
+     *     String folderUrl = backupPoller.getFinalResult&#40;&#41;;
+     *
+     *     System.out.printf&#40;&quot;Backup completed. The storage location of this backup is: %s.%n&quot;, folderUrl&#41;;
+     * &#125; else &#123;
+     *     KeyVaultBackupOperation operation = backupPoller.poll&#40;&#41;.getValue&#40;&#41;;
+     *
+     *     System.out.printf&#40;&quot;Backup failed with error: %s.%n&quot;, operation.getError&#40;&#41;.getMessage&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultBackupClient.beginBackup#String-String -->
      *
      * @param blobStorageUrl The URL for the Blob Storage resource where the backup will be located.
      * @param sasToken A Shared Access Signature (SAS) token to authorize access to the blob.
@@ -76,7 +107,31 @@ public SyncPoller<KeyVaultBackupOperation, String> beginBackup(String blobStorag
      * <p><strong>Code Samples</strong></p>
      * <p>Starts a {@link KeyVaultRestoreOperation restore operation}, polls for its status and waits for it to
      * complete. Prints out error details in case the operation fails.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultBackupClient.beginBackup#String-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultBackupClient.beginBackup#String-String -->
+     * <pre>
+     * String blobStorageUrl = &quot;https:&#47;&#47;myaccount.blob.core.windows.net&#47;myContainer&quot;;
+     * String sasToken = &quot;sv=2020-02-10&amp;ss=b&amp;srt=o&amp;sp=rwdlactfx&amp;se=2021-06-17T07:13:07Z&amp;st=2021-06-16T23:13:07Z&quot;
+     *     + &quot;&amp;spr=https&amp;sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D&quot;;
+     *
+     * SyncPoller&lt;KeyVaultBackupOperation, String&gt; backupPoller = client.beginBackup&#40;blobStorageUrl, sasToken&#41;;
+     *
+     * PollResponse&lt;KeyVaultBackupOperation&gt; pollResponse = backupPoller.poll&#40;&#41;;
+     *
+     * System.out.printf&#40;&quot;The current status of the operation is: %s.%n&quot;, pollResponse.getStatus&#40;&#41;&#41;;
+     *
+     * PollResponse&lt;KeyVaultBackupOperation&gt; finalPollResponse = backupPoller.waitForCompletion&#40;&#41;;
+     *
+     * if &#40;finalPollResponse.getStatus&#40;&#41; == LongRunningOperationStatus.SUCCESSFULLY_COMPLETED&#41; &#123;
+     *     String folderUrl = backupPoller.getFinalResult&#40;&#41;;
+     *
+     *     System.out.printf&#40;&quot;Backup completed. The storage location of this backup is: %s.%n&quot;, folderUrl&#41;;
+     * &#125; else &#123;
+     *     KeyVaultBackupOperation operation = backupPoller.poll&#40;&#41;.getValue&#40;&#41;;
+     *
+     *     System.out.printf&#40;&quot;Backup failed with error: %s.%n&quot;, operation.getError&#40;&#41;.getMessage&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultBackupClient.beginBackup#String-String -->
      *
      * @param folderUrl The URL for the Blob Storage resource where the backup is located, including the path to
      * the blob container where the backup resides. This would be the exact value that is returned as the result of a
@@ -101,7 +156,31 @@ public SyncPoller<KeyVaultRestoreOperation, KeyVaultRestoreResult> beginRestore(
      * <p><strong>Code Samples</strong></p>
      * <p>Starts a {@link KeyVaultSelectiveKeyRestoreOperation selective key restore operation}, polls for its status
      * and waits for it to complete. Prints out error details in case the operation fails.</p>
-     * {@codesnippet com.azure.security.keyvault.administration.keyVaultBackupClient.beginSelectiveKeyRestore#String-String-String}
+     * <!-- src_embed com.azure.security.keyvault.administration.keyVaultBackupClient.beginSelectiveKeyRestore#String-String-String -->
+     * <pre>
+     * String folderUrl = &quot;https:&#47;&#47;myaccount.blob.core.windows.net&#47;myContainer&#47;mhsm-myaccount-2020090117323313&quot;;
+     * String sasToken = &quot;sv=2020-02-10&amp;ss=b&amp;srt=o&amp;sp=rwdlactfx&amp;se=2021-06-17T07:13:07Z&amp;st=2021-06-16T23:13:07Z&quot;
+     *     + &quot;&amp;spr=https&amp;sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D&quot;;
+     * String keyName = &quot;myKey&quot;;
+     *
+     * SyncPoller&lt;KeyVaultSelectiveKeyRestoreOperation, KeyVaultSelectiveKeyRestoreResult&gt; backupPoller =
+     *     client.beginSelectiveKeyRestore&#40;folderUrl, sasToken, keyName&#41;;
+     *
+     * PollResponse&lt;KeyVaultSelectiveKeyRestoreOperation&gt; pollResponse = backupPoller.poll&#40;&#41;;
+     *
+     * System.out.printf&#40;&quot;The current status of the operation is: %s.%n&quot;, pollResponse.getStatus&#40;&#41;&#41;;
+     *
+     * PollResponse&lt;KeyVaultSelectiveKeyRestoreOperation&gt; finalPollResponse = backupPoller.waitForCompletion&#40;&#41;;
+     *
+     * if &#40;finalPollResponse.getStatus&#40;&#41; == LongRunningOperationStatus.SUCCESSFULLY_COMPLETED&#41; &#123;
+     *     System.out.printf&#40;&quot;Key restored successfully.%n&quot;&#41;;
+     * &#125; else &#123;
+     *     KeyVaultSelectiveKeyRestoreOperation operation = backupPoller.poll&#40;&#41;.getValue&#40;&#41;;
+     *
+     *     System.out.printf&#40;&quot;Key restore failed with error: %s.%n&quot;, operation.getError&#40;&#41;.getMessage&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.administration.keyVaultBackupClient.beginSelectiveKeyRestore#String-String-String -->
      *
      * @param keyName The name of the key to be restored.
      * @param folderUrl The URL for the Blob Storage resource where the backup is located, including the path to
diff --git a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultBackupClientBuilder.java b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultBackupClientBuilder.java
index 5ff890f1111e0..428fbe8374fde 100644
--- a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultBackupClientBuilder.java
+++ b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/KeyVaultBackupClientBuilder.java
@@ -42,9 +42,23 @@
  * an {@link KeyVaultBackupAsyncClient} are {@link String vaultUrl} and {@link TokenCredential credential}.</p>
  *
  * <p><strong>Samples to construct a sync client</strong></p>
- * {@codesnippet com.azure.security.keyvault.administration.keyVaultBackupClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.administration.keyVaultBackupClient.instantiation -->
+ * <pre>
+ * KeyVaultBackupClient keyVaultBackupClient = new KeyVaultBackupClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myaccount.managedhsm.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.administration.keyVaultBackupClient.instantiation -->
  * <p><strong>Samples to construct an async client</strong></p>
- * {@codesnippet com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.instantiation -->
+ * <pre>
+ * KeyVaultBackupAsyncClient keyVaultBackupAsyncClient = new KeyVaultBackupClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myaccount.managedhsm.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.administration.keyVaultBackupAsyncClient.instantiation -->
  *
  * @see KeyVaultBackupClient
  * @see KeyVaultBackupAsyncClient
diff --git a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/models/KeyVaultRoleScope.java b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/models/KeyVaultRoleScope.java
index 6bd6295819ee2..2d9a9b61364f8 100644
--- a/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/models/KeyVaultRoleScope.java
+++ b/sdk/keyvault/azure-security-keyvault-administration/src/main/java/com/azure/security/keyvault/administration/models/KeyVaultRoleScope.java
@@ -12,7 +12,14 @@
  * A class that defines the scope of a role.
  */
 public final class KeyVaultRoleScope extends ExpandableStringEnum<KeyVaultRoleScope> {
+    /**
+     * Global role scope.
+     */
     public static final KeyVaultRoleScope GLOBAL = fromString("/");
+
+    /**
+     * Keys role scope.
+     */
     public static final KeyVaultRoleScope KEYS = fromString("/keys");
 
     /**
diff --git a/sdk/keyvault/azure-security-keyvault-administration/src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java b/sdk/keyvault/azure-security-keyvault-administration/src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java
index 85aa3e830ff16..0bdd7a79214f2 100644
--- a/sdk/keyvault/azure-security-keyvault-administration/src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java
+++ b/sdk/keyvault/azure-security-keyvault-administration/src/samples/java/com/azure/security/keyvault/administration/ReadmeSamples.java
@@ -3,6 +3,7 @@
 
 package com.azure.security.keyvault.administration;
 
+import com.azure.core.exception.HttpResponseException;
 import com.azure.core.http.rest.PagedIterable;
 import com.azure.core.util.polling.AsyncPollResponse;
 import com.azure.core.util.polling.LongRunningOperationStatus;
@@ -21,95 +22,113 @@
 import java.time.Duration;
 
 /**
- * WARNING: MODIFYING THIS FILE WILL REQUIRE CORRESPONDING UPDATES TO README.md FILE. LINE NUMBERS ARE USED TO EXTRACT
- * APPROPRIATE CODE SEGMENTS FROM THIS FILE. ADD NEW CODE AT THE BOTTOM TO AVOID CHANGING LINE NUMBERS OF EXISTING CODE
- * SAMPLES.
- *
  * Class containing code snippets that will be injected to README.md.
  */
+@SuppressWarnings("unused")
 public class ReadmeSamples {
     private final KeyVaultAccessControlClient keyVaultAccessControlClient =
         new KeyVaultAccessControlClientBuilder()
             .vaultUrl("<your-access-control-key-vault-url>")
             .credential(new DefaultAzureCredentialBuilder().build())
             .buildClient();
-    private final KeyVaultAccessControlAsyncClient keyVaultAccessControlAsyncClient = null;
+    private final KeyVaultAccessControlAsyncClient keyVaultAccessControlAsyncClient =
+        new KeyVaultAccessControlClientBuilder()
+            .vaultUrl("<your-access-control-key-vault-url>")
+            .credential(new DefaultAzureCredentialBuilder().build())
+            .buildAsyncClient();
     private final KeyVaultBackupClient keyVaultBackupClient =
         new KeyVaultBackupClientBuilder()
             .vaultUrl("<your-backup-key-vault-url>")
             .credential(new DefaultAzureCredentialBuilder().build())
             .buildClient();
-    private final KeyVaultBackupAsyncClient keyVaultBackupAsyncClient = null;
+    private final KeyVaultBackupAsyncClient keyVaultBackupAsyncClient =
+        new KeyVaultBackupClientBuilder()
+            .vaultUrl("<your-backup-key-vault-url>")
+            .credential(new DefaultAzureCredentialBuilder().build())
+            .buildAsyncClient();
 
     /**
      * Code sample for creating a {@link KeyVaultAccessControlClient}.
      */
     public void createAccessControlClient() {
+        // BEGIN: readme-sample-createAccessControlClient
         KeyVaultAccessControlClient keyVaultAccessControlClient = new KeyVaultAccessControlClientBuilder()
             .vaultUrl("<your-key-vault-url>")
             .credential(new DefaultAzureCredentialBuilder().build())
             .buildClient();
+        // END: readme-sample-createAccessControlClient
     }
 
     /**
      * Code sample for listing {@link KeyVaultRoleDefinition role definitions}.
      */
     public void listRoleDefinitions() {
+        // BEGIN: readme-sample-listRoleDefinitions
         PagedIterable<KeyVaultRoleDefinition> roleDefinitions =
             keyVaultAccessControlClient.listRoleDefinitions(KeyVaultRoleScope.GLOBAL);
 
         roleDefinitions.forEach(roleDefinition ->
             System.out.printf("Retrieved role definition with name '%s'.%n", roleDefinition.getName()));
+        // END: readme-sample-listRoleDefinitions
     }
 
     /**
      * Code sample for creating or updating a {@link KeyVaultRoleDefinition role definition}.
      */
     public void setRoleDefinition() {
+        // BEGIN: readme-sample-setRoleDefinition
         KeyVaultRoleDefinition roleDefinition = keyVaultAccessControlClient.setRoleDefinition(KeyVaultRoleScope.GLOBAL);
 
         System.out.printf("Created role definition with randomly generated name '%s' and role name '%s'.%n",
             roleDefinition.getName(), roleDefinition.getRoleName());
+        // END: readme-sample-setRoleDefinition
     }
 
     /**
      * Code sample for getting a {@link KeyVaultRoleDefinition role definition}.
      */
     public void getRoleDefinition() {
+        // BEGIN: readme-sample-getRoleDefinition
         String roleDefinitionName = "<role-definition-name>";
         KeyVaultRoleDefinition roleDefinition =
             keyVaultAccessControlClient.getRoleDefinition(KeyVaultRoleScope.GLOBAL, roleDefinitionName);
 
         System.out.printf("Retrieved role definition with name '%s' and role name '%s'.%n", roleDefinition.getName(),
             roleDefinition.getRoleName());
+        // END: readme-sample-getRoleDefinition
     }
 
     /**
      * Code sample for deleting a {@link KeyVaultRoleDefinition role definition}.
      */
     public void deleteRoleDefinition() {
+        // BEGIN: readme-sample-deleteRoleDefinition
         String roleDefinitionName = "<role-definition-name>";
 
         keyVaultAccessControlClient.deleteRoleDefinition(KeyVaultRoleScope.GLOBAL, roleDefinitionName);
 
         System.out.printf("Deleted role definition with name '%s'.%n", roleDefinitionName);
+        // END: readme-sample-deleteRoleDefinition
     }
 
     /**
      * Code sample for listing {@link KeyVaultRoleAssignment role assignments}.
      */
     public void listRoleAssignments() {
+        // BEGIN: readme-sample-listRoleAssignments
         PagedIterable<KeyVaultRoleAssignment> roleAssignments =
             keyVaultAccessControlClient.listRoleAssignments(KeyVaultRoleScope.GLOBAL);
 
         roleAssignments.forEach(roleAssignment ->
             System.out.printf("Retrieved role assignment with name '%s'.%n", roleAssignment.getName()));
+        // END: readme-sample-listRoleAssignments
     }
 
     /**
      * Code sample for creating a {@link KeyVaultRoleAssignment role assignment}.
      */
     public void createRoleAssignment() {
+        // BEGIN: readme-sample-createRoleAssignment
         String roleDefinitionId = "<role-definition-id>";
         String servicePrincipalId = "<service-principal-id>";
         KeyVaultRoleAssignment roleAssignment =
@@ -118,84 +137,100 @@ public void createRoleAssignment() {
 
         System.out.printf("Created role assignment with randomly generated name '%s' for principal with id '%s'.%n",
             roleAssignment.getName(), roleAssignment.getProperties().getPrincipalId());
+        // END: readme-sample-createRoleAssignment
     }
 
     /**
      * Code sample for getting a {@link KeyVaultRoleAssignment role assignment}.
      */
     public void getRoleAssignment() {
+        // BEGIN: readme-sample-getRoleAssignment
         String roleAssignmentName = "<role-assignment-name>";
         KeyVaultRoleAssignment roleAssignment =
             keyVaultAccessControlClient.getRoleAssignment(KeyVaultRoleScope.GLOBAL, roleAssignmentName);
 
         System.out.printf("Retrieved role assignment with name '%s'.%n", roleAssignment.getName());
+        // END: readme-sample-getRoleAssignment
     }
 
     /**
      * Code sample for deleting a {@link KeyVaultRoleAssignment role assignment}.
      */
     public void deleteRoleAssignment() {
+        // BEGIN: readme-sample-deleteRoleAssignment
         String roleAssignmentName = "<role-assignment-name>";
 
         keyVaultAccessControlClient.deleteRoleAssignment(KeyVaultRoleScope.GLOBAL, roleAssignmentName);
 
         System.out.printf("Deleted role assignment with name '%s'.%n", roleAssignmentName);
+        // END: readme-sample-deleteRoleAssignment
     }
 
     /**
      * Code sample for listing {@link KeyVaultRoleDefinition role definitions} asynchronously.
      */
     public void listRoleDefinitionsAsync() {
+        // BEGIN: readme-sample-listRoleDefinitionsAsync
         keyVaultAccessControlAsyncClient.listRoleDefinitions(KeyVaultRoleScope.GLOBAL)
             .subscribe(roleDefinition ->
                 System.out.printf("Retrieved role definition with name '%s'.%n", roleDefinition.getName()));
+        // END: readme-sample-listRoleDefinitionsAsync
     }
 
     /**
      * Code sample for creating or updating a {@link KeyVaultRoleDefinition role definition} asynchronously.
      */
     public void setRoleDefinitionAsync() {
+        // BEGIN: readme-sample-setRoleDefinitionAsync
         keyVaultAccessControlAsyncClient.setRoleDefinition(KeyVaultRoleScope.GLOBAL)
             .subscribe(roleDefinition ->
                 System.out.printf("Created role definition with randomly generated name '%s' and role name '%s'.%n",
                     roleDefinition.getName(), roleDefinition.getRoleName()));
+        // END: readme-sample-setRoleDefinitionAsync
     }
 
     /**
      * Code sample for getting a {@link KeyVaultRoleDefinition role definition} asynchronously.
      */
     public void getRoleDefinitionAsync() {
+        // BEGIN: readme-sample-getRoleDefinitionAsync
         String roleDefinitionName = "<role-definition-name>";
 
         keyVaultAccessControlAsyncClient.getRoleDefinition(KeyVaultRoleScope.GLOBAL, roleDefinitionName)
             .subscribe(roleDefinition ->
                 System.out.printf("Retrieved role definition with name '%s' and role name '%s'.%n",
                     roleDefinition.getName(), roleDefinition.getRoleName()));
+        // END: readme-sample-getRoleDefinitionAsync
     }
 
     /**
      * Code sample for deleting a {@link KeyVaultRoleDefinition role definition} asynchronously.
      */
     public void deleteRoleDefinitionAsync() {
+        // BEGIN: readme-sample-deleteRoleDefinitionAsync
         String roleDefinitionName = "<role-definition-name>";
 
         keyVaultAccessControlAsyncClient.deleteRoleDefinition(KeyVaultRoleScope.GLOBAL, roleDefinitionName)
             .subscribe(unused -> System.out.printf("Deleted role definition with name '%s'.%n", roleDefinitionName));
+        // END: readme-sample-deleteRoleDefinitionAsync
     }
 
     /**
      * Code sample for listing {@link KeyVaultRoleAssignment role assignments} asynchronously.
      */
     public void listRoleAssignmentsAsync() {
+        // BEGIN: readme-sample-listRoleAssignmentsAsync
         keyVaultAccessControlAsyncClient.listRoleAssignments(KeyVaultRoleScope.GLOBAL)
             .subscribe(roleAssignment ->
                 System.out.printf("Retrieved role assignment with name '%s'.%n", roleAssignment.getName()));
+        // END: readme-sample-listRoleAssignmentsAsync
     }
 
     /**
      * Code sample for creating a {@link KeyVaultRoleAssignment role assignment} asynchronously.
      */
     public void createRoleAssignmentAsync() {
+        // BEGIN: readme-sample-createRoleAssignmentAsync
         String roleDefinitionId = "<role-definition-id>";
         String servicePrincipalId = "<service-principal-id>";
 
@@ -203,44 +238,52 @@ public void createRoleAssignmentAsync() {
             servicePrincipalId).subscribe(roleAssignment ->
                 System.out.printf("Created role assignment with randomly generated name '%s' for principal with id"
                     + "'%s'.%n", roleAssignment.getName(), roleAssignment.getProperties().getPrincipalId()));
+        // END: readme-sample-createRoleAssignmentAsync
     }
 
     /**
      * Code sample for getting a {@link KeyVaultRoleAssignment role assignment} asynchronously.
      */
     public void getRoleAssignmentAsync() {
+        // BEGIN: readme-sample-getRoleAssignmentAsync
         String roleAssignmentName = "<role-assignment-name>";
 
         keyVaultAccessControlAsyncClient.getRoleAssignment(KeyVaultRoleScope.GLOBAL, roleAssignmentName)
             .subscribe(roleAssignment ->
                 System.out.printf("Retrieved role assignment with name '%s'.%n", roleAssignment.getName()));
+        // END: readme-sample-getRoleAssignmentAsync
     }
 
     /**
      * Code sample for deleting a {@link KeyVaultRoleAssignment role assignment} asynchronously.
      */
     public void deleteRoleAssignmentAsync() {
+        // BEGIN: readme-sample-deleteRoleAssignmentAsync
         String roleAssignmentName = "<role-assignment-name>";
 
         keyVaultAccessControlAsyncClient.deleteRoleAssignment(KeyVaultRoleScope.GLOBAL, roleAssignmentName)
             .subscribe(unused ->
                 System.out.printf("Deleted role assignment with name '%s'.%n", roleAssignmentName));
+        // END: readme-sample-deleteRoleAssignmentAsync
     }
 
     /**
      * Code sample for creating a {@link KeyVaultBackupClient}.
      */
     public void createBackupClient() {
+        // BEGIN: readme-sample-createBackupClient
         KeyVaultBackupClient keyVaultBackupClient = new KeyVaultBackupClientBuilder()
             .vaultUrl("<your-key-vault-url>")
             .credential(new DefaultAzureCredentialBuilder().build())
             .buildClient();
+        // END: readme-sample-createBackupClient
     }
 
     /**
      * Code sample for starting a {@link KeyVaultBackupOperation backup operation}.
      */
     public void beginBackup() {
+        // BEGIN: readme-sample-beginBackup
         String blobStorageUrl = "https://myaccount.blob.core.windows.net/myContainer";
         String sasToken = "sv=2020-02-10&ss=b&srt=o&sp=rwdlactfx&se=2021-06-17T07:13:07Z&st=2021-06-16T23:13:07Z&spr=https&sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D";
 
@@ -262,12 +305,14 @@ public void beginBackup() {
 
             System.out.printf("Backup failed with error: %s.%n", operation.getError().getMessage());
         }
+        // END: readme-sample-beginBackup
     }
 
     /**
      * Code sample for starting a {@link KeyVaultRestoreOperation restore operation}.
      */
     public void beginRestore() {
+        // BEGIN: readme-sample-beginRestore
         String folderUrl = "https://myaccount.blob.core.windows.net/myContainer/mhsm-myaccount-2020090117323313";
         String sasToken = "sv=2020-02-10&ss=b&srt=o&sp=rwdlactfx&se=2021-06-17T07:13:07Z&st=2021-06-16T23:13:07Z&spr=https&sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D";
 
@@ -287,12 +332,14 @@ public void beginRestore() {
 
             System.out.printf("Restore failed with error: %s.%n", operation.getError().getMessage());
         }
+        // END: readme-sample-beginRestore
     }
 
     /**
      * Code sample for starting a {@link KeyVaultSelectiveKeyRestoreOperation selective key restore operation}.
      */
     public void beginSelectiveKeyRestore() {
+        // BEGIN: readme-sample-beginSelectiveKeyRestore
         String folderUrl = "https://myaccount.blob.core.windows.net/myContainer/mhsm-myaccount-2020090117323313";
         String sasToken = "sv=2020-02-10&ss=b&srt=o&sp=rwdlactfx&se=2021-06-17T07:13:07Z&st=2021-06-16T23:13:07Z&spr=https&sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D";
         String keyName = "myKey";
@@ -313,12 +360,14 @@ public void beginSelectiveKeyRestore() {
 
             System.out.printf("Key restore failed with error: %s.%n", operation.getError().getMessage());
         }
+        // END: readme-sample-beginSelectiveKeyRestore
     }
 
     /**
      * Code sample for starting a {@link KeyVaultBackupOperation backup operation} asynchronously.
      */
     public void beginBackupAsync() {
+        // BEGIN: readme-sample-beginBackupAsync
         String blobStorageUrl = "https://myaccount.blob.core.windows.net/myContainer";
         String sasToken = "sv=2020-02-10&ss=b&srt=o&sp=rwdlactfx&se=2021-06-17T07:13:07Z&st=2021-06-16T23:13:07Z&spr=https&sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D";
 
@@ -331,12 +380,14 @@ public void beginBackupAsync() {
             .flatMap(AsyncPollResponse::getFinalResult)
             .subscribe(folderUrl ->
                 System.out.printf("Backup completed. The storage location of this backup is: %s.%n", folderUrl));
+        // END: readme-sample-beginBackupAsync
     }
 
     /**
      * Code sample for starting a {@link KeyVaultRestoreOperation restore operation} asynchronously.
      */
     public void beginRestoreAsync() {
+        // BEGIN: readme-sample-beginRestoreAsync
         String folderUrl = "https://myaccount.blob.core.windows.net/myContainer/mhsm-myaccount-2020090117323313";
         String sasToken = "sv=2020-02-10&ss=b&srt=o&sp=rwdlactfx&se=2021-06-17T07:13:07Z&st=2021-06-16T23:13:07Z&spr=https&sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D";
 
@@ -348,6 +399,7 @@ public void beginRestoreAsync() {
             .filter(pollResponse -> pollResponse.getStatus() == LongRunningOperationStatus.SUCCESSFULLY_COMPLETED)
             .flatMap(AsyncPollResponse::getFinalResult)
             .subscribe(unused -> System.out.printf("Backup restored successfully.%n"));
+        // END: readme-sample-beginRestoreAsync
     }
 
     /**
@@ -355,6 +407,7 @@ public void beginRestoreAsync() {
      * asynchronously.
      */
     public void beginSelectiveKeyRestoreAsync() {
+        // BEGIN: readme-sample-beginSelectiveKeyRestoreAsync
         String folderUrl = "https://myaccount.blob.core.windows.net/myContainer/mhsm-myaccount-2020090117323313";
         String sasToken = "sv=2020-02-10&ss=b&srt=o&sp=rwdlactfx&se=2021-06-17T07:13:07Z&st=2021-06-16T23:13:07Z&spr=https&sig=n5V6fnlkViEF9b7ij%2FttTHNwO2BdFIHKHppRxGAyJdc%3D";
         String keyName = "myKey";
@@ -367,5 +420,16 @@ public void beginSelectiveKeyRestoreAsync() {
             .filter(pollResponse -> pollResponse.getStatus() == LongRunningOperationStatus.SUCCESSFULLY_COMPLETED)
             .flatMap(AsyncPollResponse::getFinalResult)
             .subscribe(unused -> System.out.printf("Key restored successfully.%n"));
+        // END: readme-sample-beginSelectiveKeyRestoreAsync
+    }
+
+    public void troubleshooting() {
+        // BEGIN: readme-sample-troubleshooting
+        try {
+            keyVaultAccessControlClient.getRoleAssignment(KeyVaultRoleScope.GLOBAL, "<role-assginment-name>");
+        } catch (HttpResponseException e) {
+            System.out.println(e.getMessage());
+        }
+        // END: readme-sample-troubleshooting
     }
 }
diff --git a/sdk/keyvault/azure-security-keyvault-certificates/README.md b/sdk/keyvault/azure-security-keyvault-certificates/README.md
index c6949687a3ca9..656871ac1ca1c 100644
--- a/sdk/keyvault/azure-security-keyvault-certificates/README.md
+++ b/sdk/keyvault/azure-security-keyvault-certificates/README.md
@@ -24,14 +24,14 @@ Maven dependency for the Azure Key Vault Certificate client library. Add it to y
 - [Azure Subscription][azure_subscription]
 - An existing [Azure Key Vault][azure_keyvault]. If you need to create a Key Vault, you can use the [Azure Cloud Shell][azure_cloud_shell] to create one with this Azure CLI command. Replace `<your-resource-group-name>` and `<your-key-vault-name>` with your own, unique names:
 
-    ```Bash
-    az keyvault create --resource-group <your-resource-group-name> --name <your-key-vault-name>
-    ```
+```bash
+az keyvault create --resource-group <your-resource-group-name> --name <your-key-vault-name>
+```
 
 ### Authenticate the client
 In order to interact with the Azure Key Vault service, you'll need to create an instance of the [CertificateClient](#create-certificate-client) class. You need a **vault url** and **client secret credentials (client id, client secret, tenant id)** to instantiate a client object using the `DefaultAzureCredential` examples shown in this document.
 
-The `DefaultAzureCredential` way of authentication by providing client secret credentials is being used in this getting started section but you can find more ways to authenticate with [azure-identity][azure_identity].
+The `DefaultAzureCredential` way of authentication by providing client secret credentials is being used in this getting started section, but you can find more ways to authenticate with [azure-identity][azure_identity].
 
 #### Create/Get credentials
 To create/get client secret credentials you can use the [Azure Portal][azure_create_application_in_portal], [Azure CLI][azure_keyvault_cli_full] or [Azure Cloud Shell][azure_cloud_shell]
@@ -40,55 +40,51 @@ Here is an [Azure Cloud Shell][azure_cloud_shell] snippet below to
 
  * Create a service principal and configure its access to Azure resources:
 
-    ```Bash
-    az ad sp create-for-rbac -n <your-application-name> --skip-assignment
-    ```
+```bash
+az ad sp create-for-rbac -n <your-application-name> --skip-assignment
+```
 
-    Output:
+Output:
 
-    ```json
-    {
-        "appId": "generated-app-ID",
-        "displayName": "dummy-app-name",
-        "name": "http://dummy-app-name",
-        "password": "random-password",
-        "tenant": "tenant-ID"
-    }
-    ```
+```json
+{
+    "appId": "generated-app-ID",
+    "displayName": "dummy-app-name",
+    "name": "http://dummy-app-name",
+    "password": "random-password",
+    "tenant": "tenant-ID"
+}
+```
 
 * Use the above returned credentials information to set the **AZURE_CLIENT_ID** (appId), **AZURE_CLIENT_SECRET** (password), and **AZURE_TENANT_ID** (tenantId) environment variables. The following example shows a way to do this in Bash:
 
-    ```Bash
-    export AZURE_CLIENT_ID="generated-app-ID"
-    export AZURE_CLIENT_SECRET="random-password"
-    export AZURE_TENANT_ID="tenant-ID"
-    ```
+```bash
+export AZURE_CLIENT_ID="generated-app-ID"
+export AZURE_CLIENT_SECRET="random-password"
+export AZURE_TENANT_ID="tenant-ID"
+```
 
 * Grant the aforementioned application authorization to perform certificate operations on the Key Vault:
 
-    ```Bash
-    az keyvault set-policy --name <your-key-vault-name> --spn $AZURE_CLIENT_ID --certificate-permissions backup delete get list create update
-    ```
+```bash
+az keyvault set-policy --name <your-key-vault-name> --spn $AZURE_CLIENT_ID --certificate-permissions backup delete get list create update
+```
 
-    > --certificate-permissions:
-    > Accepted values: backup, create, delete, deleteissuers, get, getissuers, import, list, listissuers, managecontacts, manageissuers, purge, recover, restore, setissuers, update
+> --certificate-permissions:
+> Accepted values: backup, create, delete, deleteissuers, get, getissuers, import, list, listissuers, managecontacts, manageissuers, purge, recover, restore, setissuers, update
 
-    If you have enabled role-based access control (RBAC) for Key Vault instead, you can find roles like "Key Vault Certificates Officer" in our [RBAC guide][rbac_guide].
+If you have enabled role-based access control (RBAC) for Key Vault instead, you can find roles like "Key Vault Certificates Officer" in our [RBAC guide][rbac_guide].
 
 * Use the aforementioned Key Vault name to retrieve details of your Key Vault, which also contain your Key Vault URL:
 
-    ```Bash
-    az keyvault show --name <your-key-vault-name>
-    ```
+```bash
+az keyvault show --name <your-key-vault-name>
+```
 
 #### Create certificate client
 Once you've populated the **AZURE_CLIENT_ID**, **AZURE_CLIENT_SECRET**, and **AZURE_TENANT_ID** environment variables and replaced **your-key-vault-url** with the URI returned above, you can create the CertificateClient:
 
-```Java
-import com.azure.identity.DefaultAzureCredentialBuilder;
-import com.azure.security.keyvault.certificates.CertificateClient;
-import com.azure.security.keyvault.certificates.CertificateClientBuilder;
-
+```java readme-sample-createCertificateClient
 CertificateClient certificateClient = new CertificateClientBuilder()
     .vaultUrl("<your-key-vault-url>")
     .credential(new DefaultAzureCredentialBuilder().build())
@@ -120,22 +116,7 @@ The following sections provide several code snippets covering some of the most c
 Create a certificate to be stored in the Azure Key Vault.
 - `beginCreateCertificate` creates a new certificate in the Azure Key Vault. If a certificate with the same name already exists then a new version of the certificate is created.
 
-```Java
-import com.azure.core.util.polling.LongRunningOperationStatus;
-import com.azure.core.util.polling.SyncPoller;
-import com.azure.identity.DefaultAzureCredentialBuilder;
-import com.azure.security.keyvault.certificates.CertificateClient;
-import com.azure.security.keyvault.certificates.CertificateClientBuilder;
-import com.azure.security.keyvault.certificates.models.CertificateOperation;
-import com.azure.security.keyvault.certificates.models.CertificatePolicy;
-import com.azure.security.keyvault.certificates.models.KeyVaultCertificate;
-import com.azure.security.keyvault.certificates.models.KeyVaultCertificateWithPolicy; 
-
-CertificateClient certificateClient = new CertificateClientBuilder()
-    .vaultUrl("<your-key-vault-url>")
-    .credential(new DefaultAzureCredentialBuilder().build())
-    .buildClient();
-
+```java readme-sample-createCertificate
 SyncPoller<CertificateOperation, KeyVaultCertificateWithPolicy> certificatePoller =
     certificateClient.beginCreateCertificate("certificateName", CertificatePolicy.getDefault());
 certificatePoller.waitUntil(LongRunningOperationStatus.SUCCESSFULLY_COMPLETED);
@@ -146,16 +127,16 @@ System.out.printf("Certificate created with name \"%s\"%n", certificate.getName(
 ### Retrieve a certificate
 Retrieve a previously stored certificate by calling `getCertificate` or `getCertificateVersion`.
 
-```Java
+```java readme-sample-retrieveCertificate
 KeyVaultCertificateWithPolicy certificate = certificateClient.getCertificate("<certificate-name>");
-System.out.printf("Recevied certificate with name \"%s\", version %s and secret id %s%n",
+System.out.printf("Received certificate with name \"%s\", version %s and secret id %s%n",
     certificate.getProperties().getName(), certificate.getProperties().getVersion(), certificate.getSecretId());
 ```
 
 ### Update an existing certificate
 Update an existing certificate by calling `updateCertificateProperties`.
 
-```Java
+```java readme-sample-updateCertificate
 // Get the certificate to update.
 KeyVaultCertificate certificate = certificateClient.getCertificate("<certificate-name>");
 // Update certificate enabled status.
@@ -168,7 +149,7 @@ System.out.printf("Updated certificate with name \"%s\" and enabled status \"%s\
 ### Delete a certificate
 Delete an existing certificate by calling `beginDeleteCertificate`.
 
-```Java
+```java readme-sample-deleteCertificate
 SyncPoller<DeletedCertificate, Void> deleteCertificatePoller =
     certificateClient.beginDeleteCertificate("<certificate-name>");
 
@@ -186,7 +167,7 @@ deleteCertificatePoller.waitForCompletion();
 ### List certificates
 List the certificates in the key vault by calling `listPropertiesOfCertificates`.
 
-```java
+```java readme-sample-listCertificates
 // List operations don't return the certificates with their full information. So, for each returned certificate we call
 // getCertificate to get the certificate with all its properties excluding the policy.
 for (CertificateProperties certificateProperties : certificateClient.listPropertiesOfCertificates()) {
@@ -211,16 +192,7 @@ The following sections provide several code snippets covering some of the most c
 Create a certificate to be stored in the Azure Key Vault.
 - `beginCreateCertificate` creates a new certificate in the Azure Key Vault. If a certificate with same name already exists then a new version of the certificate is created.
 
-```Java
-import com.azure.identity.DefaultAzureCredentialBuilder;
-import com.azure.security.keyvault.certificates.CertificateClient;
-import com.azure.security.keyvault.certificates.CertificateClientBuilder;
-
-CertificateAsyncClient certificateAsyncClient = new CertificateClientBuilder()
-    .vaultUrl("<your-key-vault-url>")
-    .credential(new DefaultAzureCredentialBuilder().build())
-    .buildAsyncClient();
-
+```java readme-sample-createCertificateAsync
 // Creates a certificate using the default policy and polls on its progress.
 certificateAsyncClient.beginCreateCertificate("<certificate-name>", CertificatePolicy.getDefault())
     .subscribe(pollResponse -> {
@@ -234,7 +206,7 @@ certificateAsyncClient.beginCreateCertificate("<certificate-name>", CertificateP
 ### Retrieve a certificate asynchronously
 Retrieve a previously stored certificate by calling `getCertificate` or `getCertificateVersion`.
 
-```Java
+```java readme-sample-retrieveCertificateAsync
 certificateAsyncClient.getCertificate("<certificate-name>")
     .subscribe(certificateResponse ->
         System.out.printf("Certificate was returned with name \"%s\" and secretId %s%n",
@@ -244,23 +216,20 @@ certificateAsyncClient.getCertificate("<certificate-name>")
 ### Update an existing certificate asynchronously
 Update an existing certificate by calling `updateCertificateProperties`.
 
-```Java
+```java readme-sample-updateCertificateAsync
 certificateAsyncClient.getCertificate("<certificate-name>")
-    .subscribe(certificateResponseValue -> {
-        KeyVaultCertificate certificate = certificateResponseValue;
+    .flatMap(certificate -> {
         // Update enabled status of the certificate.
         certificate.getProperties().setEnabled(false);
-        certificateAsyncClient.updateCertificateProperties(certificate.getProperties())
-            .subscribe(certificateResponse ->
-                System.out.printf("Certificate's enabled status: %s%n",
-                    certificateResponse.getProperties().isEnabled()));
-    });
+        return certificateAsyncClient.updateCertificateProperties(certificate.getProperties());
+    }).subscribe(certificateResponse -> System.out.printf("Certificate's enabled status: %s%n",
+        certificateResponse.getProperties().isEnabled()));
 ```
 
 ### Delete a certificate asynchronously
 Delete an existing certificate by calling `beginDeleteCertificate`.
 
-```java
+```java readme-sample-deleteCertificateAsync
 certificateAsyncClient.beginDeleteCertificate("<certificate-name>")
     .subscribe(pollResponse -> {
         System.out.printf("Deletion status: %s%n", pollResponse.getStatus());
@@ -272,25 +241,24 @@ certificateAsyncClient.beginDeleteCertificate("<certificate-name>")
 ### List certificates asynchronously
 List the certificates in the Azure Key Vault by calling `listPropertiesOfCertificates`.
 
-```Java
+```java readme-sample-listCertificateAsync
 // The List Certificates operation returns certificates without their full properties, so for each certificate returned
 // we call `getCertificate` to get all its attributes excluding the policy.
 certificateAsyncClient.listPropertiesOfCertificates()
-    .subscribe(certificateProperties ->
-        certificateAsyncClient.getCertificateVersion(certificateProperties.getName(),
-            certificateProperties.getVersion())
-            .subscribe(certificateResponse ->
-                System.out.printf("Received certificate with name \"%s\" and key id %s", certificateResponse.getName(),
-                    certificateResponse.getKeyId())));
+    .flatMap(certificateProperties -> certificateAsyncClient
+        .getCertificateVersion(certificateProperties.getName(), certificateProperties.getVersion()))
+    .subscribe(certificateResponse ->
+        System.out.printf("Received certificate with name \"%s\" and key id %s", certificateResponse.getName(),
+            certificateResponse.getKeyId()));
 ```
 
 ## Troubleshooting
 ### General
 Azure Key Vault Certificate clients raise exceptions. For example, if you try to retrieve a certificate after it is deleted a `404` error is returned, indicating the resource was not found. In the following snippet, the error is handled gracefully by catching the exception and displaying additional information about the error.
 
-```java
+```java readme-sample-troubleshooting
 try {
-    certificateClient.getCertificate("<deleted-certificate-name>")
+    certificateClient.getCertificate("<deleted-certificate-name>");
 } catch (ResourceNotFoundException e) {
     System.out.println(e.getMessage());
 }
diff --git a/sdk/keyvault/azure-security-keyvault-certificates/pom.xml b/sdk/keyvault/azure-security-keyvault-certificates/pom.xml
index f8724aae55b2b..5057d4c2da0ae 100644
--- a/sdk/keyvault/azure-security-keyvault-certificates/pom.xml
+++ b/sdk/keyvault/azure-security-keyvault-certificates/pom.xml
@@ -39,6 +39,9 @@
       --add-opens com.azure.security.keyvault.certificates/com.azure.security.keyvault.certificates=ALL-UNNAMED
       --add-opens com.azure.security.keyvault.certificates/com.azure.security.keyvault.certificates.models=ALL-UNNAMED
     </javaModulesSurefireArgLine>
+    <codesnippet.skip>false</codesnippet.skip>
+    <javadocDoclet></javadocDoclet>
+    <javadocDocletOptions></javadocDocletOptions>
   </properties>
 
   <dependencies>
diff --git a/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateAsyncClient.java b/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateAsyncClient.java
index 215546e37fa65..27d5b0d61e6a5 100644
--- a/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateAsyncClient.java
+++ b/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateAsyncClient.java
@@ -65,7 +65,15 @@
  *
  * <p><strong>Samples to construct the async client</strong></p>
  *
- * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.instantiation -->
+ * <pre>
+ * CertificateAsyncClient certificateAsyncClient = new CertificateClientBuilder&#40;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.vault.azure.net&#47;&quot;&#41;
+ *     .httpLogOptions&#40;new HttpLogOptions&#40;&#41;.setLogLevel&#40;HttpLogDetailLevel.BODY_AND_HEADERS&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.instantiation -->
  *
  * @see CertificateClientBuilder
  * @see PagedFlux
@@ -132,7 +140,20 @@ Duration getDefaultPollingInterval() {
      * <p>Create certificate is a long running operation. The {@link PollerFlux poller} allows users to automatically poll on the create certificate
      * operation status. It is possible to monitor each intermediate poll response during the poll operation.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.beginCreateCertificate#String-CertificatePolicy-Boolean-Map}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.beginCreateCertificate#String-CertificatePolicy-Boolean-Map -->
+     * <pre>
+     * CertificatePolicy policy = new CertificatePolicy&#40;&quot;Self&quot;, &quot;CN=SelfSignedJavaPkcs12&quot;&#41;;
+     * Map&lt;String, String&gt; tags = new HashMap&lt;&gt;&#40;&#41;;
+     * tags.put&#40;&quot;foo&quot;, &quot;bar&quot;&#41;;
+     * certificateAsyncClient.beginCreateCertificate&#40;&quot;certificateName&quot;, policy, true, tags&#41;
+     *     .subscribe&#40;pollResponse -&gt; &#123;
+     *         System.out.println&#40;&quot;---------------------------------------------------------------------------------&quot;&#41;;
+     *         System.out.println&#40;pollResponse.getStatus&#40;&#41;&#41;;
+     *         System.out.println&#40;pollResponse.getValue&#40;&#41;.getStatus&#40;&#41;&#41;;
+     *         System.out.println&#40;pollResponse.getValue&#40;&#41;.getStatusDetails&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.beginCreateCertificate#String-CertificatePolicy-Boolean-Map -->
      *
      * @param certificateName The name of the certificate to be created.
      * @param policy The policy of the certificate to be created.
@@ -185,7 +206,18 @@ Mono<KeyVaultCertificateWithPolicy>> fetchResultOperation(String certificateName
      * <p>Create certificate is a long running operation. The {@link PollerFlux poller} allows users to automatically poll on the create certificate
      * operation status. It is possible to monitor each intermediate poll response during the poll operation.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.beginCreateCertificate#String-CertificatePolicy}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.beginCreateCertificate#String-CertificatePolicy -->
+     * <pre>
+     * CertificatePolicy certPolicy = new CertificatePolicy&#40;&quot;Self&quot;, &quot;CN=SelfSignedJavaPkcs12&quot;&#41;;
+     * certificateAsyncClient.beginCreateCertificate&#40;&quot;certificateName&quot;, certPolicy&#41;
+     *     .subscribe&#40;pollResponse -&gt; &#123;
+     *         System.out.println&#40;&quot;---------------------------------------------------------------------------------&quot;&#41;;
+     *         System.out.println&#40;pollResponse.getStatus&#40;&#41;&#41;;
+     *         System.out.println&#40;pollResponse.getValue&#40;&#41;.getStatus&#40;&#41;&#41;;
+     *         System.out.println&#40;pollResponse.getValue&#40;&#41;.getStatusDetails&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.beginCreateCertificate#String-CertificatePolicy -->
      *
      * @param certificateName The name of the certificate to be created.
      * @param policy The policy of the certificate to be created.
@@ -252,7 +284,17 @@ Mono<Response<CertificateOperation>> createCertificateWithResponse(String certif
      * <p>Get a pending certificate operation. The {@link PollerFlux poller} allows users to automatically poll on the certificate
      * operation status. It is possible to monitor each intermediate poll response during the poll operation.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificateOperation#String}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificateOperation#String -->
+     * <pre>
+     * certificateAsyncClient.getCertificateOperation&#40;&quot;certificateName&quot;&#41;
+     *     .subscribe&#40;pollResponse -&gt; &#123;
+     *         System.out.println&#40;&quot;---------------------------------------------------------------------------------&quot;&#41;;
+     *         System.out.println&#40;pollResponse.getStatus&#40;&#41;&#41;;
+     *         System.out.println&#40;pollResponse.getValue&#40;&#41;.getStatus&#40;&#41;&#41;;
+     *         System.out.println&#40;pollResponse.getValue&#40;&#41;.getStatusDetails&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificateOperation#String -->
      *
      * @param certificateName The name of the certificate.
      * @throws ResourceNotFoundException when a certificate operation for a certificate with {@code certificateName} doesn't exist.
@@ -274,7 +316,15 @@ public PollerFlux<CertificateOperation, KeyVaultCertificateWithPolicy> getCertif
      * <p>Gets a specific version of the certificate in the key vault. Prints out the
      * returned certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificate#String}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificate#String -->
+     * <pre>
+     * certificateAsyncClient.getCertificate&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificateResponse -&gt;
+     *         System.out.printf&#40;&quot;Certificate is returned with name %s and secretId %s %n&quot;,
+     *             certificateResponse.getProperties&#40;&#41;.getName&#40;&#41;, certificateResponse.getSecretId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificate#String -->
      *
      * @param certificateName The name of the certificate to retrieve, cannot be null
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -298,7 +348,16 @@ public Mono<KeyVaultCertificateWithPolicy> getCertificate(String certificateName
      * <p>Gets a specific version of the certificate in the key vault. Prints out the
      * returned certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificateWithResponse#String}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificateWithResponse#String -->
+     * <pre>
+     * certificateAsyncClient.getCertificateWithResponse&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificateResponse -&gt;
+     *         System.out.printf&#40;&quot;Certificate is returned with name %s and secretId %s %n&quot;,
+     *             certificateResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getName&#40;&#41;,
+     *             certificateResponse.getValue&#40;&#41;.getSecretId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificateWithResponse#String -->
      *
      * @param certificateName The name of the certificate to retrieve, cannot be null
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -340,7 +399,17 @@ Mono<Response<KeyVaultCertificate>> getCertificateVersionWithResponse(String cer
      * <p>Gets a specific version of the certificate in the key vault. Prints out the
      * returned certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificateVersionWithResponse#string-string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificateVersionWithResponse#string-string -->
+     * <pre>
+     * String certificateVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     * certificateAsyncClient.getCertificateVersionWithResponse&#40;&quot;certificateName&quot;, certificateVersion&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificateWithVersion -&gt;
+     *         System.out.printf&#40;&quot;Certificate is returned with name %s and secretId %s %n&quot;,
+     *             certificateWithVersion.getValue&#40;&#41;.getProperties&#40;&#41;.getName&#40;&#41;,
+     *             certificateWithVersion.getValue&#40;&#41;.getSecretId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificateVersionWithResponse#string-string -->
      *
      * @param certificateName The name of the certificate to retrieve, cannot be null
      * @param version The version of the certificate to retrieve. If this is an empty String or null then latest version of the certificate is retrieved.
@@ -365,7 +434,15 @@ public Mono<Response<KeyVaultCertificate>> getCertificateVersionWithResponse(Str
      * <p>Gets a specific version of the certificate in the key vault. Prints out the
      * returned certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificateVersion#String-String}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificateVersion#String-String -->
+     * <pre>
+     * certificateAsyncClient.getCertificateVersion&#40;&quot;certificateName&quot;, certificateVersion&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificateWithVersion -&gt;
+     *         System.out.printf&#40;&quot;Certificate is returned with name %s and secretId %s %n&quot;,
+     *             certificateWithVersion.getProperties&#40;&#41;.getName&#40;&#41;, certificateWithVersion.getSecretId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificateVersion#String-String -->
      *
      * @param certificateName The name of the certificate to retrieve, cannot be null
      * @param version The version of the certificate to retrieve. If this is an empty String or null then latest version of the certificate is retrieved.
@@ -391,7 +468,21 @@ public Mono<KeyVaultCertificate> getCertificateVersion(String certificateName, S
      * <p>Gets latest version of the certificate, changes its tags and enabled status and then updates it in the Azure Key Vault. Prints out the
      * returned certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.updateCertificateProperties#CertificateProperties}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.updateCertificateProperties#CertificateProperties -->
+     * <pre>
+     * certificateAsyncClient.getCertificate&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificateResponseValue -&gt; &#123;
+     *         KeyVaultCertificate certificate = certificateResponseValue;
+     *         &#47;&#47;Update enabled status of the certificate
+     *         certificate.getProperties&#40;&#41;.setEnabled&#40;false&#41;;
+     *         certificateAsyncClient.updateCertificateProperties&#40;certificate.getProperties&#40;&#41;&#41;
+     *             .subscribe&#40;certificateResponse -&gt;
+     *                 System.out.printf&#40;&quot;Certificate's enabled status %s %n&quot;,
+     *                     certificateResponse.getProperties&#40;&#41;.isEnabled&#40;&#41;.toString&#40;&#41;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.updateCertificateProperties#CertificateProperties -->
      *
      * @param properties The {@link CertificateProperties} object with updated properties.
      * @throws NullPointerException if {@code certificate} is {@code null}.
@@ -416,7 +507,21 @@ public Mono<KeyVaultCertificate> updateCertificateProperties(CertificateProperti
      * <p>Gets latest version of the certificate, changes its enabled status and then updates it in the Azure Key Vault. Prints out the
      * returned certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.updateCertificatePropertiesWithResponse#CertificateProperties}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.updateCertificatePropertiesWithResponse#CertificateProperties -->
+     * <pre>
+     * certificateAsyncClient.getCertificate&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificateResponseValue -&gt; &#123;
+     *         KeyVaultCertificate certificate = certificateResponseValue;
+     *         &#47;&#47;Update the enabled status of the certificate.
+     *         certificate.getProperties&#40;&#41;.setEnabled&#40;false&#41;;
+     *         certificateAsyncClient.updateCertificatePropertiesWithResponse&#40;certificate.getProperties&#40;&#41;&#41;
+     *             .subscribe&#40;certificateResponse -&gt;
+     *                 System.out.printf&#40;&quot;Certificate's enabled status %s %n&quot;,
+     *                     certificateResponse.getValue&#40;&#41;.getProperties&#40;&#41;.isEnabled&#40;&#41;.toString&#40;&#41;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.updateCertificatePropertiesWithResponse#CertificateProperties -->
      *
      * @param properties The {@link CertificateProperties} object with updated properties.
      * @throws NullPointerException if {@code properties} is {@code null}.
@@ -457,7 +562,16 @@ Mono<Response<KeyVaultCertificate>> updateCertificatePropertiesWithResponse(Cert
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes the certificate in the Azure Key Vault. Prints out the deleted certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.beginDeleteCertificate#String}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.beginDeleteCertificate#String -->
+     * <pre>
+     * certificateAsyncClient.beginDeleteCertificate&#40;&quot;certificateName&quot;&#41;
+     *     .subscribe&#40;pollResponse -&gt; &#123;
+     *         System.out.println&#40;&quot;Delete Status: &quot; + pollResponse.getStatus&#40;&#41;.toString&#40;&#41;&#41;;
+     *         System.out.println&#40;&quot;Delete Certificate Name: &quot; + pollResponse.getValue&#40;&#41;.getName&#40;&#41;&#41;;
+     *         System.out.println&#40;&quot;Certificate Delete Date: &quot; + pollResponse.getValue&#40;&#41;.getDeletedOn&#40;&#41;.toString&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.beginDeleteCertificate#String -->
      *
      * @param certificateName The name of the certificate to be deleted.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -519,7 +633,14 @@ Mono<Response<DeletedCertificate>> deleteCertificateWithResponse(String certific
      * <p> Gets the deleted certificate from the key vault enabled for soft-delete. Prints out the
      * deleted certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.getDeletedCertificate#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.getDeletedCertificate#string -->
+     * <pre>
+     * certificateAsyncClient.getDeletedCertificate&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;deletedSecretResponse -&gt;
+     *         System.out.printf&#40;&quot;Deleted Certificate's Recovery Id %s %n&quot;, deletedSecretResponse.getRecoveryId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.getDeletedCertificate#string -->
      *
      * @param certificateName The name of the deleted certificate.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -545,7 +666,15 @@ public Mono<DeletedCertificate> getDeletedCertificate(String certificateName) {
      * <p> Gets the deleted certificate from the key vault enabled for soft-delete. Prints out the
      * deleted certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.getDeletedCertificateWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.getDeletedCertificateWithResponse#string -->
+     * <pre>
+     * certificateAsyncClient.getDeletedCertificateWithResponse&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;deletedSecretResponse -&gt;
+     *         System.out.printf&#40;&quot;Deleted Certificate's Recovery Id %s %n&quot;,
+     *             deletedSecretResponse.getValue&#40;&#41;.getRecoveryId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.getDeletedCertificateWithResponse#string -->
      *
      * @param certificateName The name of the deleted certificate.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -579,7 +708,14 @@ Mono<Response<DeletedCertificate>> getDeletedCertificateWithResponse(String cert
      * <p>Purges the deleted certificate from the key vault enabled for soft-delete. Prints out the
      * status code from the server response when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.purgeDeletedCertificateWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.purgeDeletedCertificateWithResponse#string -->
+     * <pre>
+     * certificateAsyncClient.purgeDeletedCertificateWithResponse&#40;&quot;deletedCertificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;purgeResponse -&gt;
+     *         System.out.printf&#40;&quot;Purge Status response %d %n&quot;, purgeResponse.getStatusCode&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.purgeDeletedCertificateWithResponse#string -->
      *
      * @param certificateName The name of the deleted certificate.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -603,7 +739,14 @@ public Mono<Void> purgeDeletedCertificate(String certificateName) {
      * <p>Purges the deleted certificate from the key vault enabled for soft-delete. Prints out the
      * status code from the server response when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.purgeDeletedCertificateWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.purgeDeletedCertificateWithResponse#string -->
+     * <pre>
+     * certificateAsyncClient.purgeDeletedCertificateWithResponse&#40;&quot;deletedCertificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;purgeResponse -&gt;
+     *         System.out.printf&#40;&quot;Purge Status response %d %n&quot;, purgeResponse.getStatusCode&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.purgeDeletedCertificateWithResponse#string -->
      *
      * @param certificateName The name of the deleted certificate.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -638,7 +781,16 @@ Mono<Response<Void>> purgeDeletedCertificateWithResponse(String certificateName,
      * <p>Recovers the deleted certificate from the key vault enabled for soft-delete. Prints out the
      * recovered certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.certificatevault.certificates.CertificateAsyncClient.beginRecoverDeletedCertificate#String}
+     * <!-- src_embed com.azure.security.certificatevault.certificates.CertificateAsyncClient.beginRecoverDeletedCertificate#String -->
+     * <pre>
+     * certificateAsyncClient.beginRecoverDeletedCertificate&#40;&quot;deletedCertificateName&quot;&#41;
+     *     .subscribe&#40;pollResponse -&gt; &#123;
+     *         System.out.println&#40;&quot;Recovery Status: &quot; + pollResponse.getStatus&#40;&#41;.toString&#40;&#41;&#41;;
+     *         System.out.println&#40;&quot;Recover Certificate Name: &quot; + pollResponse.getValue&#40;&#41;.getName&#40;&#41;&#41;;
+     *         System.out.println&#40;&quot;Recover Certificate Id: &quot; + pollResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.certificatevault.certificates.CertificateAsyncClient.beginRecoverDeletedCertificate#String -->
      *
      * @param certificateName The name of the deleted certificate to be recovered.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the certificate vault.
@@ -701,7 +853,14 @@ Mono<Response<KeyVaultCertificateWithPolicy>> recoverDeletedCertificateWithRespo
      * <p>Backs up the certificate from the key vault. Prints out the
      * length of the certificate's backup byte array returned in the response.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.backupCertificate#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.backupCertificate#string -->
+     * <pre>
+     * certificateAsyncClient.backupCertificate&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificateBackupResponse -&gt;
+     *         System.out.printf&#40;&quot;Certificate's Backup Byte array's length %s %n&quot;, certificateBackupResponse.length&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.backupCertificate#string -->
      *
      * @param certificateName The name of the certificate.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -725,7 +884,15 @@ public Mono<byte[]> backupCertificate(String certificateName) {
      * <p>Backs up the certificate from the key vault. Prints out the
      * length of the certificate's backup byte array returned in the response.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.backupCertificateWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.backupCertificateWithResponse#string -->
+     * <pre>
+     * certificateAsyncClient.backupCertificateWithResponse&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificateBackupResponse -&gt;
+     *         System.out.printf&#40;&quot;Certificate's Backup Byte array's length %s %n&quot;,
+     *             certificateBackupResponse.getValue&#40;&#41;.length&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.backupCertificateWithResponse#string -->
      *
      * @param certificateName The name of the certificate.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -761,7 +928,15 @@ Mono<Response<byte[]>> backupCertificateWithResponse(String certificateName, Con
      * <p>Restores the certificate in the key vault from its backup. Prints out the restored certificate
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.restoreCertificate#byte}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.restoreCertificate#byte -->
+     * <pre>
+     * byte[] certificateBackupByteArray = &#123;&#125;;
+     * certificateAsyncClient.restoreCertificateBackup&#40;certificateBackupByteArray&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificateResponse -&gt; System.out.printf&#40;&quot;Restored Certificate with name %s and key id %s %n&quot;,
+     *         certificateResponse.getProperties&#40;&#41;.getName&#40;&#41;, certificateResponse.getKeyId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.restoreCertificate#byte -->
      *
      * @param backup The backup blob associated with the certificate.
      * @throws ResourceModifiedException when {@code backup} blob is malformed.
@@ -784,7 +959,15 @@ public Mono<KeyVaultCertificateWithPolicy> restoreCertificateBackup(byte[] backu
      * <p>Restores the certificate in the key vault from its backup. Prints out the restored certificate
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.restoreCertificateWithResponse#byte}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.restoreCertificateWithResponse#byte -->
+     * <pre>
+     * byte[] certificateBackup = &#123;&#125;;
+     * certificateAsyncClient.restoreCertificateBackup&#40;certificateBackup&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificateResponse -&gt; System.out.printf&#40;&quot;Restored Certificate with name %s and key id %s %n&quot;,
+     *         certificateResponse.getProperties&#40;&#41;.getName&#40;&#41;, certificateResponse.getKeyId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.restoreCertificateWithResponse#byte -->
      *
      * @param backup The backup blob associated with the certificate.
      * @throws ResourceModifiedException when {@code backup} blob is malformed.
@@ -819,7 +1002,16 @@ Mono<Response<KeyVaultCertificateWithPolicy>> restoreCertificateBackupWithRespon
      * <p>It is possible to get certificates with all the properties excluding the policy from this information. Convert the {@link Flux} containing {@link CertificateProperties} to
      * {@link Flux} containing {@link KeyVaultCertificate certificate} using {@link CertificateAsyncClient#getCertificateVersion(String, String)} within {@link Flux#flatMap(Function)}.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.listCertificates}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.listCertificates -->
+     * <pre>
+     * certificateAsyncClient.listPropertiesOfCertificates&#40;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificate -&gt; certificateAsyncClient.getCertificateVersion&#40;certificate.getName&#40;&#41;,
+     *         certificate.getVersion&#40;&#41;&#41;
+     *         .subscribe&#40;certificateResponse -&gt; System.out.printf&#40;&quot;Received certificate with name %s and key id %s&quot;,
+     *             certificateResponse.getName&#40;&#41;, certificateResponse.getKeyId&#40;&#41;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.listCertificates -->
      *
      * @param includePending indicate if pending certificates should be included in the results.
      * @return A {@link PagedFlux} containing {@link CertificateProperties certificate} for all the certificates in the vault.
@@ -845,7 +1037,16 @@ public PagedFlux<CertificateProperties> listPropertiesOfCertificates(boolean inc
      * <p>It is possible to get certificates with all the properties excluding the policy from this information. Convert the {@link Flux} containing {@link CertificateProperties} to
      * {@link Flux} containing {@link KeyVaultCertificate certificate} using {@link CertificateAsyncClient#getCertificateVersion(String, String)} within {@link Flux#flatMap(Function)}.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.listCertificates}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.listCertificates -->
+     * <pre>
+     * certificateAsyncClient.listPropertiesOfCertificates&#40;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificate -&gt; certificateAsyncClient.getCertificateVersion&#40;certificate.getName&#40;&#41;,
+     *         certificate.getVersion&#40;&#41;&#41;
+     *         .subscribe&#40;certificateResponse -&gt; System.out.printf&#40;&quot;Received certificate with name %s and key id %s&quot;,
+     *             certificateResponse.getName&#40;&#41;, certificateResponse.getKeyId&#40;&#41;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.listCertificates -->
      *
      * @return A {@link PagedFlux} containing {@link CertificateProperties certificate} for all the certificates in the vault.
      */
@@ -912,7 +1113,14 @@ private Mono<PagedResponse<CertificateProperties>> listCertificatesFirstPage(boo
      * <p>Lists the deleted certificates in the key vault. Prints out the
      * recovery id of each deleted certificate when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.listDeletedCertificates}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.listDeletedCertificates -->
+     * <pre>
+     * certificateAsyncClient.listDeletedCertificates&#40;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;deletedCertificateResponse -&gt;  System.out.printf&#40;&quot;Deleted Certificate's Recovery Id %s %n&quot;,
+     *         deletedCertificateResponse.getRecoveryId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.listDeletedCertificates -->
      *
      * @return A {@link PagedFlux} containing all of the {@link DeletedCertificate deleted certificates} in the vault.
      */
@@ -939,7 +1147,14 @@ public PagedFlux<DeletedCertificate> listDeletedCertificates() {
      * <p>Lists the deleted certificates in the key vault. Prints out the
      * recovery id of each deleted certificate when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.listDeletedCertificates}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.listDeletedCertificates -->
+     * <pre>
+     * certificateAsyncClient.listDeletedCertificates&#40;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;deletedCertificateResponse -&gt;  System.out.printf&#40;&quot;Deleted Certificate's Recovery Id %s %n&quot;,
+     *         deletedCertificateResponse.getRecoveryId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.listDeletedCertificates -->
      *
      * @param includePending indicate if pending deleted certificates should be included in the results.
      * @return A {@link PagedFlux} containing all of the {@link DeletedCertificate deleted certificates} in the vault.
@@ -1008,7 +1223,16 @@ private Mono<PagedResponse<DeletedCertificate>> listDeletedCertificatesFirstPage
      * containing {@link CertificateProperties} to {@link PagedFlux} containing {@link KeyVaultCertificate certificate} using
      * {@link CertificateAsyncClient#getCertificateVersion(String, String)} within {@link Flux#flatMap(Function)}.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.listCertificateVersions}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.listCertificateVersions -->
+     * <pre>
+     * certificateAsyncClient.listPropertiesOfCertificateVersions&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificate -&gt; certificateAsyncClient.getCertificateVersion&#40;certificate.getName&#40;&#41;,
+     *         certificate.getVersion&#40;&#41;&#41;
+     *         .subscribe&#40;certificateResponse -&gt; System.out.printf&#40;&quot;Received certificate with name %s and key id %s&quot;,
+     *             certificateResponse.getProperties&#40;&#41;.getName&#40;&#41;, certificateResponse.getKeyId&#40;&#41;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.listCertificateVersions -->
      *
      * @param certificateName The name of the certificate.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -1067,7 +1291,16 @@ private Mono<PagedResponse<CertificateProperties>> listCertificateVersionsNextPa
      * <p><strong>Code Samples</strong></p>
      * <p> Merges a certificate with a kay pair available in the service.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.mergeCertificate#config}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.mergeCertificate#config -->
+     * <pre>
+     * List&lt;byte[]&gt; x509CertificatesToMerge = new ArrayList&lt;&gt;&#40;&#41;;
+     * MergeCertificateOptions config =
+     *     new MergeCertificateOptions&#40;&quot;certificateName&quot;, x509CertificatesToMerge&#41;.setEnabled&#40;false&#41;;
+     * certificateAsyncClient.mergeCertificate&#40;config&#41;
+     *     .subscribe&#40;certificate -&gt; System.out.printf&#40;&quot;Received Certificate with name %s and key id %s&quot;,
+     *         certificate.getProperties&#40;&#41;.getName&#40;&#41;, certificate.getKeyId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.mergeCertificate#config -->
      *
      * @param mergeCertificateOptions the merge certificate options holding the x509 certificates.
      *
@@ -1091,7 +1324,16 @@ public Mono<KeyVaultCertificate> mergeCertificate(MergeCertificateOptions mergeC
      * <p><strong>Code Samples</strong></p>
      * <p> Merges a certificate with a kay pair available in the service.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.mergeCertificateWithResponse#config}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.mergeCertificateWithResponse#config -->
+     * <pre>
+     * List&lt;byte[]&gt; x509CertsToMerge = new ArrayList&lt;&gt;&#40;&#41;;
+     * MergeCertificateOptions mergeConfig =
+     *     new MergeCertificateOptions&#40;&quot;certificateName&quot;, x509CertsToMerge&#41;.setEnabled&#40;false&#41;;
+     * certificateAsyncClient.mergeCertificateWithResponse&#40;mergeConfig&#41;
+     *     .subscribe&#40;certificateResponse -&gt; System.out.printf&#40;&quot;Received Certificate with name %s and key id %s&quot;,
+     *         certificateResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getName&#40;&#41;, certificateResponse.getValue&#40;&#41;.getKeyId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.mergeCertificateWithResponse#config -->
      *
      * @param mergeCertificateOptions the merge certificate options holding the x509 certificates.
      *
@@ -1128,7 +1370,15 @@ Mono<Response<KeyVaultCertificateWithPolicy>> mergeCertificateWithResponse(Merge
      * <p>Gets the policy of a certirifcate in the key vault. Prints out the
      * returned certificate policy details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificatePolicy#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificatePolicy#string -->
+     * <pre>
+     * certificateAsyncClient.getCertificatePolicy&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;policy -&gt;
+     *         System.out.printf&#40;&quot;Certificate policy is returned with issuer name %s and subject name %s %n&quot;,
+     *             policy.getIssuerName&#40;&#41;, policy.getSubject&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificatePolicy#string -->
      *
      * @param certificateName The name of the certificate whose policy is to be retrieved, cannot be null
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -1151,7 +1401,15 @@ public Mono<CertificatePolicy> getCertificatePolicy(String certificateName) {
      * <p>Gets the policy of a certirifcate in the key vault. Prints out the
      * returned certificate policy details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificatePolicyWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificatePolicyWithResponse#string -->
+     * <pre>
+     * certificateAsyncClient.getCertificatePolicyWithResponse&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;policyResponse -&gt;
+     *         System.out.printf&#40;&quot;Certificate policy is returned with issuer name %s and subject name %s %n&quot;,
+     *             policyResponse.getValue&#40;&#41;.getIssuerName&#40;&#41;, policyResponse.getValue&#40;&#41;.getSubject&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.getCertificatePolicyWithResponse#string -->
      *
      * @param certificateName The name of the certificate whose policy is to be retrieved, cannot be null
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -1184,7 +1442,21 @@ Mono<Response<CertificatePolicy>> getCertificatePolicyWithResponse(String certif
      * <p>Gets the certificate policy, changes its properties and then updates it in the Azure Key Vault. Prints out the
      * returned policy details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.updateCertificatePolicy#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.updateCertificatePolicy#string -->
+     * <pre>
+     * certificateAsyncClient.getCertificatePolicy&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificatePolicyResponseValue -&gt; &#123;
+     *         CertificatePolicy certificatePolicy = certificatePolicyResponseValue;
+     *         &#47;&#47; Update transparency
+     *         certificatePolicy.setCertificateTransparent&#40;true&#41;;
+     *         certificateAsyncClient.updateCertificatePolicy&#40;&quot;certificateName&quot;, certificatePolicy&#41;
+     *             .subscribe&#40;updatedPolicy -&gt;
+     *                 System.out.printf&#40;&quot;Certificate policy's updated transparency status %s %n&quot;,
+     *                     updatedPolicy.isCertificateTransparent&#40;&#41;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.updateCertificatePolicy#string -->
      *
      * @param certificateName The name of the certificate whose policy is to be updated.
      * @param policy The certificate policy to be updated.
@@ -1210,7 +1482,22 @@ public Mono<CertificatePolicy> updateCertificatePolicy(String certificateName, C
      * <p>Gets the certificate policy, changes its properties and then updates it in the Azure Key Vault. Prints out the
      * returned policy details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.updateCertificatePolicyWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.updateCertificatePolicyWithResponse#string -->
+     * <pre>
+     * certificateAsyncClient.getCertificatePolicy&#40;&quot;certificateName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;certificatePolicyResponseValue -&gt; &#123;
+     *         CertificatePolicy certificatePolicy = certificatePolicyResponseValue;
+     *         &#47;&#47; Update transparency
+     *         certificatePolicy.setCertificateTransparent&#40;true&#41;;
+     *         certificateAsyncClient.updateCertificatePolicyWithResponse&#40;&quot;certificateName&quot;,
+     *             certificatePolicy&#41;
+     *             .subscribe&#40;updatedPolicyResponse -&gt;
+     *                 System.out.printf&#40;&quot;Certificate policy's updated transparency status %s %n&quot;,
+     *                     updatedPolicyResponse.getValue&#40;&#41;.isCertificateTransparent&#40;&#41;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.updateCertificatePolicyWithResponse#string -->
      *
      * @param certificateName The name of the certificate whose policy is to be updated.
      * @param policy The certificate policy is to be updated.
@@ -1246,7 +1533,19 @@ Mono<Response<CertificatePolicy>> updateCertificatePolicyWithResponse(String cer
      * <p>Creates a new certificate issuer in the key vault. Prints out the created certificate
      * issuer details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.createIssuer#CertificateIssuer}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.createIssuer#CertificateIssuer -->
+     * <pre>
+     * CertificateIssuer issuer = new CertificateIssuer&#40;&quot;issuerName&quot;, &quot;providerName&quot;&#41;
+     *     .setAccountId&#40;&quot;keyvaultuser&quot;&#41;
+     *     .setPassword&#40;&quot;temp2&quot;&#41;;
+     * certificateAsyncClient.createIssuer&#40;issuer&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;issuerResponse -&gt; &#123;
+     *         System.out.printf&#40;&quot;Issuer created with %s and %s&quot;, issuerResponse.getName&#40;&#41;,
+     *             issuerResponse.getProvider&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.createIssuer#CertificateIssuer -->
      *
      * @param issuer The configuration of the certificate issuer to be created.
      * @throws ResourceModifiedException when invalid certificate issuer {@code issuer} configuration is provided.
@@ -1271,7 +1570,19 @@ public Mono<CertificateIssuer> createIssuer(CertificateIssuer issuer) {
      * <p>Creates a new certificate issuer in the key vault. Prints out the created certificate
      * issuer details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.createIssuerWithResponse#CertificateIssuer}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.createIssuerWithResponse#CertificateIssuer -->
+     * <pre>
+     * CertificateIssuer newIssuer = new CertificateIssuer&#40;&quot;issuerName&quot;, &quot;providerName&quot;&#41;
+     *     .setAccountId&#40;&quot;keyvaultuser&quot;&#41;
+     *     .setPassword&#40;&quot;temp2&quot;&#41;;
+     * certificateAsyncClient.createIssuerWithResponse&#40;newIssuer&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;issuerResponse -&gt; &#123;
+     *         System.out.printf&#40;&quot;Issuer created with %s and %s&quot;, issuerResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *             issuerResponse.getValue&#40;&#41;.getProvider&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.createIssuerWithResponse#CertificateIssuer -->
      *
      * @param issuer The configuration of the certificate issuer to be created. Use
      * {@link CertificateIssuer#CertificateIssuer(String, String)} to initialize the issuer object
@@ -1309,7 +1620,16 @@ Mono<Response<CertificateIssuer>> createIssuerWithResponse(CertificateIssuer iss
      * <p>Gets the specificed certifcate issuer in the key vault. Prints out the
      * returned certificate issuer details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.getIssuerWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.getIssuerWithResponse#string -->
+     * <pre>
+     * certificateAsyncClient.getIssuerWithResponse&#40;&quot;issuerName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;issuerResponse -&gt; &#123;
+     *         System.out.printf&#40;&quot;Issuer returned with %s and %s&quot;, issuerResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *             issuerResponse.getValue&#40;&#41;.getProvider&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.getIssuerWithResponse#string -->
      *
      * @param issuerName The name of the certificate issuer to retrieve, cannot be null
      * @throws ResourceNotFoundException when a certificate issuer with {@code issuerName} doesn't exist in the key vault.
@@ -1332,7 +1652,16 @@ public Mono<Response<CertificateIssuer>> getIssuerWithResponse(String issuerName
      * <p>Gets the specified certificate issuer in the key vault. Prints out the
      * returned certificate issuer details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.getIssuer#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.getIssuer#string -->
+     * <pre>
+     * certificateAsyncClient.getIssuer&#40;&quot;issuerName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;issuer -&gt; &#123;
+     *         System.out.printf&#40;&quot;Issuer returned with %s and %s&quot;, issuer.getName&#40;&#41;,
+     *             issuer.getProvider&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.getIssuer#string -->
      *
      * @param issuerName The name of the certificate to retrieve, cannot be null
      * @throws ResourceNotFoundException when a certificate issuer with {@code issuerName} doesn't exist in the key vault.
@@ -1366,7 +1695,14 @@ Mono<Response<CertificateIssuer>> getIssuerWithResponse(String issuerName, Conte
      * <p>Deletes the certificate issuer in the Azure Key Vault. Prints out the
      * deleted certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteIssuerWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteIssuerWithResponse#string -->
+     * <pre>
+     * certificateAsyncClient.deleteIssuerWithResponse&#40;&quot;issuerName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;deletedIssuerResponse -&gt;
+     *         System.out.printf&#40;&quot;Deleted issuer with name %s %n&quot;, deletedIssuerResponse.getValue&#40;&#41;.getName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteIssuerWithResponse#string -->
      *
      * @param issuerName The name of the certificate issuer to be deleted.
      * @throws ResourceNotFoundException when a certificate issuer with {@code issuerName} doesn't exist in the key vault.
@@ -1390,7 +1726,14 @@ public Mono<Response<CertificateIssuer>> deleteIssuerWithResponse(String issuerN
      * <p>Deletes the certificate issuer in the Azure Key Vault. Prints out the
      * deleted certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteIssuer#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteIssuer#string -->
+     * <pre>
+     * certificateAsyncClient.deleteIssuer&#40;&quot;issuerName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;deletedIssuerResponse -&gt;
+     *         System.out.printf&#40;&quot;Deleted issuer with name %s %n&quot;, deletedIssuerResponse.getName&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteIssuer#string -->
      *
      * @param issuerName The name of the certificate issuer to be deleted.
      * @throws ResourceNotFoundException when a certificate issuer with {@code issuerName} doesn't exist in the key vault.
@@ -1425,7 +1768,15 @@ Mono<Response<CertificateIssuer>> deleteIssuerWithResponse(String issuerName, Co
      * <p>It is possible to get the certificate issuer with all of its properties from this information. Convert the {@link PagedFlux}
      * containing {@link IssuerProperties issuerProperties} to {@link PagedFlux} containing {@link CertificateIssuer issuer} using
      * {@link CertificateAsyncClient#getIssuer(String)}
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.listPropertiesOfIssuers}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.listPropertiesOfIssuers -->
+     * <pre>
+     * certificateAsyncClient.listPropertiesOfIssuers&#40;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;issuerProperties -&gt; certificateAsyncClient.getIssuer&#40;issuerProperties.getName&#40;&#41;&#41;
+     *         .subscribe&#40;issuerResponse -&gt; System.out.printf&#40;&quot;Received issuer with name %s and provider %s&quot;,
+     *             issuerResponse.getName&#40;&#41;, issuerResponse.getProvider&#40;&#41;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.listPropertiesOfIssuers -->
      *
      * @return A {@link PagedFlux} containing all of the {@link IssuerProperties certificate issuers} in the vault.
      */
@@ -1486,7 +1837,21 @@ private Mono<PagedResponse<IssuerProperties>> listPropertiesOfIssuersNextPage(St
      * <p>Gets the certificate issuer, changes its attributes/properties then updates it in the Azure Key Vault. Prints out the
      * returned certificate issuer details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.updateIssuer#CertificateIssuer}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.updateIssuer#CertificateIssuer -->
+     * <pre>
+     * certificateAsyncClient.getIssuer&#40;&quot;issuerName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;issuerResponseValue -&gt; &#123;
+     *         CertificateIssuer issuer = issuerResponseValue;
+     *         &#47;&#47;Update the enabled status of the issuer.
+     *         issuer.setEnabled&#40;false&#41;;
+     *         certificateAsyncClient.updateIssuer&#40;issuer&#41;
+     *             .subscribe&#40;issuerResponse -&gt;
+     *                 System.out.printf&#40;&quot;Issuer's enabled status %s %n&quot;,
+     *                     issuerResponse.isEnabled&#40;&#41;.toString&#40;&#41;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.updateIssuer#CertificateIssuer -->
      *
      * @param issuer The {@link CertificateIssuer issuer} with updated properties. Use
      * {@link CertificateIssuer#CertificateIssuer(String)} to initialize the issuer object
@@ -1513,7 +1878,21 @@ public Mono<CertificateIssuer> updateIssuer(CertificateIssuer issuer) {
      * <p>Gets the certificate issuer, changes its attributes/properties then updates it in the Azure Key Vault. Prints out the
      * returned certificate issuer details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.updateIssuer#CertificateIssuer}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.updateIssuer#CertificateIssuer -->
+     * <pre>
+     * certificateAsyncClient.getIssuer&#40;&quot;issuerName&quot;&#41;
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;issuerResponseValue -&gt; &#123;
+     *         CertificateIssuer issuer = issuerResponseValue;
+     *         &#47;&#47;Update the enabled status of the issuer.
+     *         issuer.setEnabled&#40;false&#41;;
+     *         certificateAsyncClient.updateIssuer&#40;issuer&#41;
+     *             .subscribe&#40;issuerResponse -&gt;
+     *                 System.out.printf&#40;&quot;Issuer's enabled status %s %n&quot;,
+     *                     issuerResponse.isEnabled&#40;&#41;.toString&#40;&#41;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.updateIssuer#CertificateIssuer -->
      *
      * @param issuer The {@link CertificateIssuer issuer} with updated properties.
      * @throws NullPointerException if {@code issuer} is {@code null}.
@@ -1552,7 +1931,14 @@ Mono<Response<CertificateIssuer>> updateIssuerWithResponse(CertificateIssuer iss
      * <p>Sets the certificate contacts in the Azure Key Vault. Prints out the
      * returned contacts details.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.setContacts#contacts}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.setContacts#contacts -->
+     * <pre>
+     * CertificateContact contactToAdd = new CertificateContact&#40;&#41;.setName&#40;&quot;user&quot;&#41;.setEmail&#40;&quot;useremail&#64;example.com&quot;&#41;;
+     * certificateAsyncClient.setContacts&#40;Collections.singletonList&#40;contactToAdd&#41;&#41;.subscribe&#40;contact -&gt;
+     *     System.out.printf&#40;&quot;Contact name %s and email %s&quot;, contact.getName&#40;&#41;, contact.getEmail&#40;&#41;&#41;
+     * &#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.setContacts#contacts -->
      *
      * @param contacts The list of contacts to set on the vault.
      * @throws HttpResponseException when a contact information provided is invalid/incomplete.
@@ -1589,7 +1975,13 @@ private Mono<PagedResponse<CertificateContact>> setCertificateContactsWithRespon
      * <p>Lists the certificate contacts in the Azure Key Vault. Prints out the
      * returned contacts details.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.listContacts}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.listContacts -->
+     * <pre>
+     * certificateAsyncClient.listContacts&#40;&#41;.subscribe&#40;contact -&gt;
+     *     System.out.printf&#40;&quot;Contact name %s and email %s&quot;, contact.getName&#40;&#41;, contact.getEmail&#40;&#41;&#41;
+     * &#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.listContacts -->
      *
      * @return A {@link PagedFlux} containing all of the {@link CertificateContact certificate contacts} in the vault.
      */
@@ -1627,7 +2019,13 @@ private Mono<PagedResponse<CertificateContact>> listCertificateContactsFirstPage
      * <p>Deletes the certificate contacts in the Azure Key Vault. Prints out the
      * deleted contacts details.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteContacts}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteContacts -->
+     * <pre>
+     * certificateAsyncClient.deleteContacts&#40;&#41;.subscribe&#40;contact -&gt;
+     *     System.out.printf&#40;&quot;Deleted Contact name %s and email %s&quot;, contact.getName&#40;&#41;, contact.getEmail&#40;&#41;&#41;
+     * &#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteContacts -->
      *
      * @return A {@link PagedFlux} containing all of the {@link CertificateContact deleted certificate contacts} in the vault.
      */
@@ -1662,7 +2060,13 @@ private Mono<PagedResponse<CertificateContact>> deleteCertificateContactsWithRes
      * <p>Triggers certificate creation and then deletes the certificate creation operation in the Azure Key Vault. Prints out the
      * deleted certificate operation details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteCertificateOperation#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteCertificateOperation#string -->
+     * <pre>
+     * certificateAsyncClient.deleteCertificateOperation&#40;&quot;certificateName&quot;&#41;
+     *     .subscribe&#40;certificateOperation -&gt; System.out.printf&#40;&quot;Deleted Certificate operation last status %s&quot;,
+     *         certificateOperation.getStatus&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteCertificateOperation#string -->
      *
      * @param certificateName The name of the certificate which is in the process of being created.
      * @throws ResourceNotFoundException when a certificate operation for a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -1686,7 +2090,13 @@ public Mono<CertificateOperation> deleteCertificateOperation(String certificateN
      * <p>Triggers certificate creation and then deletes the certificate creation operation in the Azure Key Vault. Prints out the
      * deleted certificate operation details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteCertificateOperationWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteCertificateOperationWithResponse#string -->
+     * <pre>
+     * certificateAsyncClient.deleteCertificateOperationWithResponse&#40;&quot;certificateName&quot;&#41;
+     *     .subscribe&#40;certificateOperationResponse -&gt; System.out.printf&#40;&quot;Deleted Certificate operation's last&quot;
+     *         + &quot; status %s&quot;, certificateOperationResponse.getValue&#40;&#41;.getStatus&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.deleteCertificateOperationWithResponse#string -->
      *
      * @param certificateName The name of the certificate which is in the process of being created.
      * @throws ResourceNotFoundException when a certificate operation for a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -1728,7 +2138,13 @@ Mono<Response<CertificateOperation>> cancelCertificateOperationWithResponse(Stri
      * <p>Triggers certificate creation and then cancels the certificate creation operation in the Azure Key Vault. Prints out the
      * updated certificate operation details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.cancelCertificateOperation#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.cancelCertificateOperation#string -->
+     * <pre>
+     * certificateAsyncClient.cancelCertificateOperation&#40;&quot;certificateName&quot;&#41;
+     *     .subscribe&#40;certificateOperation -&gt; System.out.printf&#40;&quot;Certificate operation status %s&quot;,
+     *         certificateOperation.getStatus&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.cancelCertificateOperation#string -->
      *
      * @param certificateName The name of the certificate which is in the process of being created.
      * @throws ResourceNotFoundException when a certificate operation for a certificate with {@code name} doesn't exist in the key vault.
@@ -1751,7 +2167,13 @@ public Mono<CertificateOperation> cancelCertificateOperation(String certificateN
      * <p>Triggers certificate creation and then cancels the certificate creation operation in the Azure Key Vault. Prints out the
      * updated certificate operation details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.cancelCertificateOperationWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.cancelCertificateOperationWithResponse#string -->
+     * <pre>
+     * certificateAsyncClient.cancelCertificateOperationWithResponse&#40;&quot;certificateName&quot;&#41;
+     *     .subscribe&#40;certificateOperationResponse -&gt; System.out.printf&#40;&quot;Certificate operation status %s&quot;,
+     *         certificateOperationResponse.getValue&#40;&#41;.getStatus&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.cancelCertificateOperationWithResponse#string -->
      *
      * @param certificateName The name of the certificate which is in the process of being created.
      * @throws ResourceNotFoundException when a certificate operation for a certificate with {@code name} doesn't exist in the key vault.
@@ -1776,7 +2198,16 @@ public Mono<Response<CertificateOperation>> cancelCertificateOperationWithRespon
      * <p><strong>Code Samples</strong></p>
      * <p> Imports a certificate into the key vault.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.importCertificate#options}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.importCertificate#options -->
+     * <pre>
+     * byte[] certificateToImport = new byte[100];
+     * ImportCertificateOptions config =
+     *     new ImportCertificateOptions&#40;&quot;certificateName&quot;, certificateToImport&#41;.setEnabled&#40;false&#41;;
+     * certificateAsyncClient.importCertificate&#40;config&#41;
+     *     .subscribe&#40;certificate -&gt; System.out.printf&#40;&quot;Received Certificate with name %s and key id %s&quot;,
+     *         certificate.getProperties&#40;&#41;.getName&#40;&#41;, certificate.getKeyId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.importCertificate#options -->
      *
      * @param importCertificateOptions The details of the certificate to import to the key vault
      * @throws HttpResponseException when the {@code importCertificateOptions} are invalid.
@@ -1798,7 +2229,16 @@ public Mono<KeyVaultCertificateWithPolicy> importCertificate(ImportCertificateOp
      * <p><strong>Code Samples</strong></p>
      * <p> Imports a certificate into the key vault.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.importCertificateWithResponse#options}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.importCertificateWithResponse#options -->
+     * <pre>
+     * byte[] certToImport = new byte[100];
+     * ImportCertificateOptions importCertificateOptions  =
+     *     new ImportCertificateOptions&#40;&quot;certificateName&quot;, certToImport&#41;.setEnabled&#40;false&#41;;
+     * certificateAsyncClient.importCertificateWithResponse&#40;importCertificateOptions&#41;
+     *     .subscribe&#40;certificateResponse -&gt; System.out.printf&#40;&quot;Received Certificate with name %s and key id %s&quot;,
+     *         certificateResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getName&#40;&#41;, certificateResponse.getValue&#40;&#41;.getKeyId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.importCertificateWithResponse#options -->
      *
      * @param importCertificateOptions The details of the certificate to import to the key vault
      * @throws HttpResponseException when the {@code importCertificateOptions} are invalid.
diff --git a/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateClient.java b/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateClient.java
index 713f1896de322..ef516cd2985ea 100644
--- a/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateClient.java
+++ b/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateClient.java
@@ -43,7 +43,15 @@
  *
  * <p><strong>Samples to construct the sync client</strong></p>
  *
- * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.instantiation -->
+ * <pre>
+ * CertificateClient certificateClient = new CertificateClientBuilder&#40;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.vault.azure.net&#47;&quot;&#41;
+ *     .httpLogOptions&#40;new HttpLogOptions&#40;&#41;.setLogLevel&#40;HttpLogDetailLevel.BODY_AND_HEADERS&#41;&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.certificates.CertificateClient.instantiation -->
  *
  * @see CertificateClientBuilder
  * @see PagedIterable
@@ -79,7 +87,17 @@ public String getVaultUrl() {
      * <p>Create certificate is a long running operation. The createCertificate indefinitely waits for the operation to complete and
      * returns its last status. The details of the last certificate operation status are printed when a response is received</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.beginCreateCertificate#String-CertificatePolicy-Boolean-Map}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.beginCreateCertificate#String-CertificatePolicy-Boolean-Map -->
+     * <pre>
+     * CertificatePolicy certificatePolicyPkcsSelf = new CertificatePolicy&#40;&quot;Self&quot;,
+     *     &quot;CN=SelfSignedJavaPkcs12&quot;&#41;;
+     * SyncPoller&lt;CertificateOperation, KeyVaultCertificateWithPolicy&gt; certificateSyncPoller = certificateClient
+     *     .beginCreateCertificate&#40;&quot;certificateName&quot;, certificatePolicyPkcsSelf, true, new HashMap&lt;&gt;&#40;&#41;&#41;;
+     * certificateSyncPoller.waitUntil&#40;LongRunningOperationStatus.SUCCESSFULLY_COMPLETED&#41;;
+     * KeyVaultCertificate createdCertificate = certificateSyncPoller.getFinalResult&#40;&#41;;
+     * System.out.printf&#40;&quot;Certificate created with name %s%n&quot;, createdCertificate.getName&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.beginCreateCertificate#String-CertificatePolicy-Boolean-Map -->
      *
      * @param certificateName The name of the certificate to be created.
      * @param policy The policy of the certificate to be created.
@@ -103,7 +121,17 @@ public SyncPoller<CertificateOperation, KeyVaultCertificateWithPolicy> beginCrea
      * <p>Create certificate is a long running operation. The createCertificate indefinitely waits for the operation to complete and
      * returns its last status. The details of the last certificate operation status are printed when a response is received</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.beginCreateCertificate#String-CertificatePolicy}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.beginCreateCertificate#String-CertificatePolicy -->
+     * <pre>
+     * CertificatePolicy certPolicy = new CertificatePolicy&#40;&quot;Self&quot;,
+     *     &quot;CN=SelfSignedJavaPkcs12&quot;&#41;;
+     * SyncPoller&lt;CertificateOperation, KeyVaultCertificateWithPolicy&gt; certPoller = certificateClient
+     *     .beginCreateCertificate&#40;&quot;certificateName&quot;, certPolicy&#41;;
+     * certPoller.waitUntil&#40;LongRunningOperationStatus.SUCCESSFULLY_COMPLETED&#41;;
+     * KeyVaultCertificate cert = certPoller.getFinalResult&#40;&#41;;
+     * System.out.printf&#40;&quot;Certificate created with name %s%n&quot;, cert.getName&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.beginCreateCertificate#String-CertificatePolicy -->
      *
      * @param certificateName The name of the certificate to be created.
      * @param policy The policy of the certificate to be created.
@@ -122,7 +150,15 @@ public SyncPoller<CertificateOperation, KeyVaultCertificateWithPolicy> beginCrea
      * <p>Geta a pending certificate operation. The {@link SyncPoller poller} allows users to automatically poll on the certificate
      * operation status.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.getCertificateOperation#String}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.getCertificateOperation#String -->
+     * <pre>
+     * SyncPoller&lt;CertificateOperation, KeyVaultCertificateWithPolicy&gt; getCertPoller = certificateClient
+     *     .getCertificateOperation&#40;&quot;certificateName&quot;&#41;;
+     * getCertPoller.waitUntil&#40;LongRunningOperationStatus.SUCCESSFULLY_COMPLETED&#41;;
+     * KeyVaultCertificate cert = getCertPoller.getFinalResult&#40;&#41;;
+     * System.out.printf&#40;&quot;Certificate created with name %s%n&quot;, cert.getName&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.getCertificateOperation#String -->
      *
      * @param certificateName The name of the certificate.
      * @throws ResourceNotFoundException when a certificate operation for a certificate with {@code certificateName} doesn't exist.
@@ -138,7 +174,14 @@ public SyncPoller<CertificateOperation, KeyVaultCertificateWithPolicy> getCertif
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a specific version of the certificate in the key vault. Prints out the returned certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.getCertificate#String}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.getCertificate#String -->
+     * <pre>
+     * KeyVaultCertificateWithPolicy certificate = certificateClient.getCertificate&#40;&quot;certificateName&quot;&#41;;
+     * System.out.printf&#40;&quot;Received certificate with name %s and version %s and secret id %s%n&quot;,
+     *     certificate.getProperties&#40;&#41;.getName&#40;&#41;,
+     *     certificate.getProperties&#40;&#41;.getVersion&#40;&#41;, certificate.getSecretId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.getCertificate#String -->
      *
      * @param certificateName The name of the certificate to retrieve, cannot be null
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -156,7 +199,15 @@ public KeyVaultCertificateWithPolicy getCertificate(String certificateName) {
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a specific version of the certificate in the key vault. Prints out the returned certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.getCertificateWithResponse#String-Context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.getCertificateWithResponse#String-Context -->
+     * <pre>
+     * Response&lt;KeyVaultCertificateWithPolicy&gt; certificateWithResponse = certificateClient
+     *     .getCertificateWithResponse&#40;&quot;certificateName&quot;, new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Received certificate with name %s and version %s and secret id %s%n&quot;,
+     *     certificateWithResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getName&#40;&#41;,
+     *     certificateWithResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getVersion&#40;&#41;, certificate.getSecretId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.getCertificateWithResponse#String-Context -->
      *
      * @param certificateName The name of the certificate to retrieve, cannot be null
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -175,7 +226,17 @@ public Response<KeyVaultCertificateWithPolicy> getCertificateWithResponse(String
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a specific version of the certificate in the key vault. Prints out the returned certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.getCertificateVersionWithResponse#String-String-Context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.getCertificateVersionWithResponse#String-String-Context -->
+     * <pre>
+     * Response&lt;KeyVaultCertificate&gt; returnedCertificateWithResponse = certificateClient
+     *     .getCertificateVersionWithResponse&#40;&quot;certificateName&quot;, &quot;certificateVersion&quot;,
+     *         new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Received certificate with name %s and version %s and secret id %s%n&quot;,
+     *     returnedCertificateWithResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getName&#40;&#41;,
+     *     returnedCertificateWithResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getVersion&#40;&#41;,
+     *     returnedCertificateWithResponse.getValue&#40;&#41;.getSecretId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.getCertificateVersionWithResponse#String-String-Context -->
      *
      * @param certificateName The name of the certificate to retrieve, cannot be null
      * @param version The version of the certificate to retrieve. If this is an empty String or null then latest version of the certificate is retrieved.
@@ -195,7 +256,15 @@ public Response<KeyVaultCertificate> getCertificateVersionWithResponse(String ce
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a specific version of the certificate in the key vault. Prints out the returned certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.getCertificateVersion#String-String}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.getCertificateVersion#String-String -->
+     * <pre>
+     * KeyVaultCertificate returnedCertificate = certificateClient.getCertificateVersion&#40;&quot;certificateName&quot;,
+     *     &quot;certificateVersion&quot;&#41;;
+     * System.out.printf&#40;&quot;Received certificate with name %s and version %s and secret id %s%n&quot;,
+     *     returnedCertificate.getProperties&#40;&#41;.getName&#40;&#41;, returnedCertificate.getProperties&#40;&#41;.getVersion&#40;&#41;,
+     *     returnedCertificate.getSecretId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.getCertificateVersion#String-String -->
      *
      * @param certificateName The name of the certificate to retrieve, cannot be null
      * @param version The version of the certificate to retrieve. If this is an empty String or null then latest version of the certificate is retrieved.
@@ -216,7 +285,16 @@ public KeyVaultCertificate getCertificateVersion(String certificateName, String
      * <p>Gets latest version of the certificate, changes its tags and enabled status and then updates it in the Azure Key Vault. Prints out the
      * returned certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.updateCertificateProperties#CertificateProperties}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.updateCertificateProperties#CertificateProperties -->
+     * <pre>
+     * KeyVaultCertificate certificate = certificateClient.getCertificate&#40;&quot;certificateName&quot;&#41;;
+     * &#47;&#47; Update certificate enabled status
+     * certificate.getProperties&#40;&#41;.setEnabled&#40;false&#41;;
+     * KeyVaultCertificate updatedCertificate = certificateClient.updateCertificateProperties&#40;certificate.getProperties&#40;&#41;&#41;;
+     * System.out.printf&#40;&quot;Updated Certificate with name %s and enabled status %s%n&quot;,
+     *     updatedCertificate.getProperties&#40;&#41;.getName&#40;&#41;, updatedCertificate.getProperties&#40;&#41;.isEnabled&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.updateCertificateProperties#CertificateProperties -->
      *
      * @param properties The {@link CertificateProperties} object with updated properties.
      * @throws NullPointerException if {@code certificate} is {@code null}.
@@ -237,7 +315,18 @@ public KeyVaultCertificate updateCertificateProperties(CertificateProperties pro
      * <p>Gets latest version of the certificate, changes its tags and enabled status and then updates it in the Azure Key Vault. Prints out the
      * returned certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.updateCertificatePropertiesWithResponse#CertificateProperties-Context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.updateCertificatePropertiesWithResponse#CertificateProperties-Context -->
+     * <pre>
+     * KeyVaultCertificate certificateToUpdate = certificateClient.getCertificate&#40;&quot;certificateName&quot;&#41;;
+     * &#47;&#47; Update certificate enabled status
+     * certificateToUpdate.getProperties&#40;&#41;.setEnabled&#40;false&#41;;
+     * Response&lt;KeyVaultCertificate&gt; updatedCertificateResponse = certificateClient.
+     *     updateCertificatePropertiesWithResponse&#40;certificateToUpdate.getProperties&#40;&#41;, new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Updated Certificate with name %s and enabled status %s%n&quot;,
+     *     updatedCertificateResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getName&#40;&#41;,
+     *     updatedCertificateResponse.getValue&#40;&#41;.getProperties&#40;&#41;.isEnabled&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.updateCertificatePropertiesWithResponse#CertificateProperties-Context -->
      *
      * @param properties The {@link CertificateProperties} object with updated properties.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -261,7 +350,17 @@ public Response<KeyVaultCertificate> updateCertificatePropertiesWithResponse(Cer
      * <p>Deletes the certificate in the Azure Key Vault. Prints out the
      * deleted certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.beginDeleteCertificate#String}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.beginDeleteCertificate#String -->
+     * <pre>
+     * SyncPoller&lt;DeletedCertificate, Void&gt; deleteCertPoller =
+     *     certificateClient.beginDeleteCertificate&#40;&quot;certificateName&quot;&#41;;
+     * &#47;&#47; Deleted Certificate is accessible as soon as polling beings.
+     * PollResponse&lt;DeletedCertificate&gt; deleteCertPollResponse = deleteCertPoller.poll&#40;&#41;;
+     * System.out.printf&#40;&quot;Deleted certificate with name %s and recovery id %s%n&quot;,
+     *     deleteCertPollResponse.getValue&#40;&#41;.getName&#40;&#41;, deleteCertPollResponse.getValue&#40;&#41;.getRecoveryId&#40;&#41;&#41;;
+     * deleteCertPoller.waitForCompletion&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.beginDeleteCertificate#String -->
      *
      * @param certificateName The name of the certificate to be deleted.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -282,7 +381,13 @@ public SyncPoller<DeletedCertificate, Void> beginDeleteCertificate(String certif
      * <p> Gets the deleted certificate from the key vault enabled for soft-delete. Prints out the
      * deleted certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.getDeletedCertificate#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.getDeletedCertificate#string -->
+     * <pre>
+     * DeletedCertificate deletedCertificate = certificateClient.getDeletedCertificate&#40;&quot;certificateName&quot;&#41;;
+     * System.out.printf&#40;&quot;Deleted certificate with name %s and recovery id %s%n&quot;, deletedCertificate.getName&#40;&#41;,
+     *     deletedCertificate.getRecoveryId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.getDeletedCertificate#string -->
      *
      * @param certificateName The name of the deleted certificate.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -303,7 +408,15 @@ public DeletedCertificate getDeletedCertificate(String certificateName) {
      * <p> Gets the deleted certificate from the key vault enabled for soft-delete. Prints out the
      * deleted certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.getDeletedCertificateWithResponse#String-Context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.getDeletedCertificateWithResponse#String-Context -->
+     * <pre>
+     * Response&lt;DeletedCertificate&gt; deletedCertificateWithResponse = certificateClient
+     *     .getDeletedCertificateWithResponse&#40;&quot;certificateName&quot;, new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Deleted certificate with name %s and recovery id %s%n&quot;,
+     *     deletedCertificateWithResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *     deletedCertificateWithResponse.getValue&#40;&#41;.getRecoveryId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.getDeletedCertificateWithResponse#String-Context -->
      *
      * @param certificateName The name of the deleted certificate.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -324,7 +437,11 @@ public Response<DeletedCertificate> getDeletedCertificateWithResponse(String cer
      * <p>Purges the deleted certificate from the key vault enabled for soft-delete. Prints out the
      * status code from the server response when a response has been received.</p>
 
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.purgeDeletedCertificate#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.purgeDeletedCertificate#string -->
+     * <pre>
+     * certificateClient.purgeDeletedCertificate&#40;&quot;certificateName&quot;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.purgeDeletedCertificate#string -->
      *
      * @param certificateName The name of the deleted certificate.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -343,7 +460,13 @@ public void purgeDeletedCertificate(String certificateName) {
      * <p>Purges the deleted certificate from the key vault enabled for soft-delete. Prints out the
      * status code from the server response when a response has been received.</p>
 
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.purgeDeletedCertificateWithResponse#string-Context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.purgeDeletedCertificateWithResponse#string-Context -->
+     * <pre>
+     * Response&lt;Void&gt; purgeResponse = certificateClient.purgeDeletedCertificateWithResponse&#40;&quot;certificateName&quot;,
+     *     new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Purged Deleted certificate with status %d%n&quot;, purgeResponse.getStatusCode&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.purgeDeletedCertificateWithResponse#string-Context -->
      *
      * @param certificateName The name of the deleted certificate.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -365,7 +488,18 @@ public Response<Void> purgeDeletedCertificateWithResponse(String certificateName
      * <p>Recovers the deleted certificate from the key vault enabled for soft-delete. Prints out the
      * recovered certificate details when a response has been received.</p>
 
-     * {@codesnippet com.azure.security.certificatevault.certificates.CertificateClient.beginRecoverDeletedCertificate#String}
+     * <!-- src_embed com.azure.security.certificatevault.certificates.CertificateClient.beginRecoverDeletedCertificate#String -->
+     * <pre>
+     * SyncPoller&lt;KeyVaultCertificateWithPolicy, Void&gt; recoverDeletedCertPoller = certificateClient
+     *     .beginRecoverDeletedCertificate&#40;&quot;deletedCertificateName&quot;&#41;;
+     * &#47;&#47; Recovered certificate is accessible as soon as polling beings
+     * PollResponse&lt;KeyVaultCertificateWithPolicy&gt; recoverDeletedCertPollResponse = recoverDeletedCertPoller.poll&#40;&#41;;
+     * System.out.printf&#40;&quot; Recovered Deleted certificate with name %s and id %s%n&quot;,
+     *     recoverDeletedCertPollResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getName&#40;&#41;,
+     *     recoverDeletedCertPollResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getId&#40;&#41;&#41;;
+     * recoverDeletedCertPoller.waitForCompletion&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.certificatevault.certificates.CertificateClient.beginRecoverDeletedCertificate#String -->
      *
      * @param certificateName The name of the deleted certificate to be recovered.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the certificate vault.
@@ -385,7 +519,12 @@ public SyncPoller<KeyVaultCertificateWithPolicy, Void> beginRecoverDeletedCertif
      * <p>Backs up the certificate from the key vault. Prints out the
      * length of the certificate's backup byte array returned in the response.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.backupCertificate#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.backupCertificate#string -->
+     * <pre>
+     * byte[] certificateBackup = certificateClient.backupCertificate&#40;&quot;certificateName&quot;&#41;;
+     * System.out.printf&#40;&quot;Backed up certificate with back up blob length %d%n&quot;, certificateBackup.length&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.backupCertificate#string -->
      *
      * @param certificateName The name of the certificate.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -405,7 +544,14 @@ public byte[] backupCertificate(String certificateName) {
      * <p>Backs up the certificate from the key vault. Prints out the
      * length of the certificate's backup byte array returned in the response.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.backupCertificateWithResponse#String-Context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.backupCertificateWithResponse#String-Context -->
+     * <pre>
+     * Response&lt;byte[]&gt; certificateBackupWithResponse = certificateClient
+     *     .backupCertificateWithResponse&#40;&quot;certificateName&quot;, new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Backed up certificate with back up blob length %d%n&quot;,
+     *     certificateBackupWithResponse.getValue&#40;&#41;.length&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.backupCertificateWithResponse#String-Context -->
      *
      * @param certificateName The certificateName of the certificate.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -426,7 +572,14 @@ public Response<byte[]> backupCertificateWithResponse(String certificateName, Co
      * <p>Restores the certificate in the key vault from its backup. Prints out the restored certificate
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.restoreCertificate#byte}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.restoreCertificate#byte -->
+     * <pre>
+     * byte[] certificateBackupBlob = &#123;&#125;;
+     * KeyVaultCertificate certificate = certificateClient.restoreCertificateBackup&#40;certificateBackupBlob&#41;;
+     * System.out.printf&#40;&quot; Restored certificate with name %s and id %s%n&quot;,
+     *     certificate.getProperties&#40;&#41;.getName&#40;&#41;, certificate.getProperties&#40;&#41;.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.restoreCertificate#byte -->
      *
      * @param backup The backup blob associated with the certificate.
      * @throws ResourceModifiedException when {@code backup} blob is malformed.
@@ -445,7 +598,16 @@ public KeyVaultCertificateWithPolicy restoreCertificateBackup(byte[] backup) {
      * <p>Restores the certificate in the key vault from its backup. Prints out the restored certificate
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.restoreCertificateWithResponse#byte-Context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.restoreCertificateWithResponse#byte-Context -->
+     * <pre>
+     * byte[] certificateBackupBlobArray = &#123;&#125;;
+     * Response&lt;KeyVaultCertificateWithPolicy&gt; certificateResponse = certificateClient
+     *     .restoreCertificateBackupWithResponse&#40;certificateBackupBlobArray, new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot; Restored certificate with name %s and id %s%n&quot;,
+     *     certificateResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getName&#40;&#41;,
+     *     certificateResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.restoreCertificateWithResponse#byte-Context -->
      *
      * @param backup The backup blob associated with the certificate.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -467,7 +629,17 @@ public Response<KeyVaultCertificateWithPolicy> restoreCertificateBackupWithRespo
      * call {@link CertificateClient#getCertificateVersion(String, String)} . This will return the {@link KeyVaultCertificate certificate}
      * with all its properties excluding the policy.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.listCertificates}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.listCertificates -->
+     * <pre>
+     * for &#40;CertificateProperties certificateProperties : certificateClient.listPropertiesOfCertificates&#40;&#41;&#41; &#123;
+     *     KeyVaultCertificate certificateWithAllProperties = certificateClient
+     *         .getCertificateVersion&#40;certificateProperties.getName&#40;&#41;, certificateProperties.getVersion&#40;&#41;&#41;;
+     *     System.out.printf&#40;&quot;Received certificate with name %s and secret id %s%n&quot;,
+     *         certificateWithAllProperties.getProperties&#40;&#41;.getName&#40;&#41;,
+     *         certificateWithAllProperties.getSecretId&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.listCertificates -->
      *
      * @return A {@link PagedIterable} containing {@link CertificateProperties certificate} for all the certificates in the vault.
      */
@@ -486,7 +658,18 @@ public PagedIterable<CertificateProperties> listPropertiesOfCertificates() {
      * call {@link CertificateClient#getCertificateVersion(String, String)} . This will return the {@link KeyVaultCertificate certificate}
      * with all its properties excluding the policy.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.listCertificates#context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.listCertificates#context -->
+     * <pre>
+     * for &#40;CertificateProperties certificateProperties : certificateClient
+     *     .listPropertiesOfCertificates&#40;true, new Context&#40;key1, value1&#41;&#41;&#41; &#123;
+     *     KeyVaultCertificate certificateWithAllProperties = certificateClient
+     *         .getCertificateVersion&#40;certificateProperties.getName&#40;&#41;, certificateProperties.getVersion&#40;&#41;&#41;;
+     *     System.out.printf&#40;&quot;Received certificate with name %s and secret id %s%n&quot;,
+     *         certificateWithAllProperties.getProperties&#40;&#41;.getName&#40;&#41;,
+     *         certificateWithAllProperties.getSecretId&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.listCertificates#context -->
      *
      * @param includePending indicate if pending certificates should be included in the results.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -506,7 +689,13 @@ public PagedIterable<CertificateProperties> listPropertiesOfCertificates(boolean
      * <p>Lists the deleted certificates in the key vault. Prints out the
      * recovery id of each deleted certificate when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.listDeletedCertificates}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.listDeletedCertificates -->
+     * <pre>
+     * for &#40;DeletedCertificate deletedCertificate : certificateClient.listDeletedCertificates&#40;&#41;&#41; &#123;
+     *     System.out.printf&#40;&quot;Deleted certificate's recovery Id %s%n&quot;, deletedCertificate.getRecoveryId&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.listDeletedCertificates -->
      *
      * @return A {@link PagedIterable} containing all of the {@link DeletedCertificate deleted certificates} in the vault.
      */
@@ -524,7 +713,14 @@ public PagedIterable<DeletedCertificate> listDeletedCertificates() {
      * <p>Lists the deleted certificates in the key vault. Prints out the
      * recovery id of each deleted certificate when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.listDeletedCertificates#context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.listDeletedCertificates#context -->
+     * <pre>
+     * for &#40;DeletedCertificate deletedCertificate : certificateClient
+     *     .listDeletedCertificates&#40;true, new Context&#40;key1, value1&#41;&#41;&#41; &#123;
+     *     System.out.printf&#40;&quot;Deleted certificate's recovery Id %s%n&quot;, deletedCertificate.getRecoveryId&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.listDeletedCertificates#context -->
      *
      * @param includePending indicate if pending deleted certificates should be included in the results.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -544,7 +740,18 @@ public PagedIterable<DeletedCertificate> listDeletedCertificates(boolean include
      * call {@link CertificateClient#getCertificateVersion(String, String)}. This will return the {@link KeyVaultCertificate certificate}
      * with all its properties excluding the policy.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.listCertificateVersions}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.listCertificateVersions -->
+     * <pre>
+     * for &#40;CertificateProperties certificateProperties : certificateClient
+     *     .listPropertiesOfCertificateVersions&#40;&quot;certificateName&quot;&#41;&#41; &#123;
+     *     KeyVaultCertificate certificateWithAllProperties = certificateClient
+     *         .getCertificateVersion&#40;certificateProperties.getName&#40;&#41;, certificateProperties.getVersion&#40;&#41;&#41;;
+     *     System.out.printf&#40;&quot;Received certificate's version with name %s, version %s and secret id %s%n&quot;,
+     *         certificateWithAllProperties.getProperties&#40;&#41;.getName&#40;&#41;,
+     *         certificateWithAllProperties.getProperties&#40;&#41;.getVersion&#40;&#41;, certificateWithAllProperties.getSecretId&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.listCertificateVersions -->
      *
      * @param certificateName The name of the certificate.
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -565,7 +772,18 @@ public PagedIterable<CertificateProperties> listPropertiesOfCertificateVersions(
      * call {@link CertificateClient#getCertificateVersion(String, String)}. This will return the {@link KeyVaultCertificate certificate}
      * with all its properties excluding the policy.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.listCertificateVersions#context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.listCertificateVersions#context -->
+     * <pre>
+     * for &#40;CertificateProperties certificateProperties : certificateClient
+     *     .listPropertiesOfCertificateVersions&#40;&quot;certificateName&quot;&#41;&#41; &#123;
+     *     KeyVaultCertificate certificateWithAllProperties = certificateClient
+     *         .getCertificateVersion&#40;certificateProperties.getName&#40;&#41;, certificateProperties.getVersion&#40;&#41;&#41;;
+     *     System.out.printf&#40;&quot;Received certificate's version with name %s, version %s and secret id %s%n&quot;,
+     *         certificateWithAllProperties.getProperties&#40;&#41;.getName&#40;&#41;,
+     *         certificateWithAllProperties.getProperties&#40;&#41;.getVersion&#40;&#41;, certificateWithAllProperties.getSecretId&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.listCertificateVersions#context -->
      *
      * @param certificateName The name of the certificate.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -585,7 +803,12 @@ public PagedIterable<CertificateProperties> listPropertiesOfCertificateVersions(
      * <p>Gets the policy of a certirifcate in the key vault. Prints out the
      * returned certificate policy details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.getCertificatePolicy#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.getCertificatePolicy#string -->
+     * <pre>
+     * CertificatePolicy policy = certificateClient.getCertificatePolicy&#40;&quot;certificateName&quot;&#41;;
+     * System.out.printf&#40;&quot;Received policy with subject name %s%n&quot;, policy.getSubject&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.getCertificatePolicy#string -->
      *
      * @param certificateName The name of the certificate whose policy is to be retrieved, cannot be null
      * @throws ResourceNotFoundException when a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -604,7 +827,14 @@ public CertificatePolicy getCertificatePolicy(String certificateName) {
      * <p>Gets the policy of a certirifcate in the key vault. Prints out the
      * returned certificate policy details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.getCertificatePolicyWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.getCertificatePolicyWithResponse#string -->
+     * <pre>
+     * Response&lt;CertificatePolicy&gt; returnedPolicyWithResponse = certificateClient.getCertificatePolicyWithResponse&#40;
+     *     &quot;certificateName&quot;, new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Received policy with subject name %s%n&quot;,
+     *     returnedPolicyWithResponse.getValue&#40;&#41;.getSubject&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.getCertificatePolicyWithResponse#string -->
      *
      * @param certificateName The name of the certificate whose policy is to be retrieved, cannot be null
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -625,7 +855,17 @@ public Response<CertificatePolicy> getCertificatePolicyWithResponse(String certi
      * <p>Gets the certificate policy, changes its properties and then updates it in the Azure Key Vault. Prints out the
      * returned policy details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.updateCertificatePolicy#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.updateCertificatePolicy#string -->
+     * <pre>
+     * CertificatePolicy certificatePolicy = certificateClient.getCertificatePolicy&#40;&quot;certificateName&quot;&#41;;
+     * &#47;&#47;Update the certificate policy cert transparency property.
+     * certificatePolicy.setCertificateTransparent&#40;true&#41;;
+     * CertificatePolicy updatedCertPolicy = certificateClient.updateCertificatePolicy&#40;&quot;certificateName&quot;,
+     *     certificatePolicy&#41;;
+     * System.out.printf&#40;&quot;Updated Certificate Policy transparency status %s%n&quot;,
+     *     updatedCertPolicy.isCertificateTransparent&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.updateCertificatePolicy#string -->
      *
      * @param certificateName The name of the certificate whose policy is to be updated.
      * @param policy The certificate policy to be updated.
@@ -647,7 +887,18 @@ public CertificatePolicy updateCertificatePolicy(String certificateName, Certifi
      * <p>Gets the certificate policy, changes its properties and then updates it in the Azure Key Vault. Prints out the
      * returned policy details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.updateCertificatePolicyWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.updateCertificatePolicyWithResponse#string -->
+     * <pre>
+     * CertificatePolicy certificatePolicyToUpdate = certificateClient.getCertificatePolicy&#40;&quot;certificateName&quot;&#41;;
+     * &#47;&#47;Update the certificate policy cert transparency property.
+     * certificatePolicyToUpdate.setCertificateTransparent&#40;true&#41;;
+     * Response&lt;CertificatePolicy&gt; updatedCertPolicyWithResponse = certificateClient
+     *     .updateCertificatePolicyWithResponse&#40;&quot;certificateName&quot;, certificatePolicyToUpdate,
+     *         new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Updated Certificate Policy transparency status %s%n&quot;, updatedCertPolicyWithResponse
+     *     .getValue&#40;&#41;.isCertificateTransparent&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.updateCertificatePolicyWithResponse#string -->
      *
      * @param certificateName The certificateName of the certificate whose policy is to be updated.
      * @param policy The certificate policy to be updated.
@@ -670,7 +921,17 @@ public Response<CertificatePolicy> updateCertificatePolicyWithResponse(String ce
      * <p>Creates a new certificate issuer in the key vault. Prints out the created certificate issuer details when a
      * response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.createIssuer#CertificateIssuer}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.createIssuer#CertificateIssuer -->
+     * <pre>
+     * CertificateIssuer issuerToCreate = new CertificateIssuer&#40;&quot;myissuer&quot;, &quot;myProvider&quot;&#41;
+     *     .setAccountId&#40;&quot;testAccount&quot;&#41;
+     *     .setAdministratorContacts&#40;Collections.singletonList&#40;new AdministratorContact&#40;&#41;.setFirstName&#40;&quot;test&quot;&#41;
+     *         .setLastName&#40;&quot;name&quot;&#41;.setEmail&#40;&quot;test&#64;example.com&quot;&#41;&#41;&#41;;
+     * CertificateIssuer returnedIssuer = certificateClient.createIssuer&#40;issuerToCreate&#41;;
+     * System.out.printf&#40;&quot;Created Issuer with name %s provider %s%n&quot;, returnedIssuer.getName&#40;&#41;,
+     *     returnedIssuer.getProvider&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.createIssuer#CertificateIssuer -->
      *
      * @param issuer The configuration of the certificate issuer to be created.
      * @throws ResourceModifiedException when invalid certificate issuer {@code issuer} configuration is provided.
@@ -690,7 +951,18 @@ public CertificateIssuer createIssuer(CertificateIssuer issuer) {
      * <p>Creates a new certificate issuer in the key vault. Prints out the created certificate
      * issuer details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.createIssuerWithResponse#CertificateIssuer-Context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.createIssuerWithResponse#CertificateIssuer-Context -->
+     * <pre>
+     * CertificateIssuer issuer = new CertificateIssuer&#40;&quot;issuerName&quot;, &quot;myProvider&quot;&#41;
+     *     .setAccountId&#40;&quot;testAccount&quot;&#41;
+     *     .setAdministratorContacts&#40;Collections.singletonList&#40;new AdministratorContact&#40;&#41;.setFirstName&#40;&quot;test&quot;&#41;
+     *         .setLastName&#40;&quot;name&quot;&#41;.setEmail&#40;&quot;test&#64;example.com&quot;&#41;&#41;&#41;;
+     * Response&lt;CertificateIssuer&gt; issuerResponse = certificateClient.createIssuerWithResponse&#40;issuer,
+     *     new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Created Issuer with name %s provider %s%n&quot;, issuerResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *     issuerResponse.getValue&#40;&#41;.getProvider&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.createIssuerWithResponse#CertificateIssuer-Context -->
      *
      * @param issuer The configuration of the certificate issuer to be created.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -710,7 +982,14 @@ public Response<CertificateIssuer> createIssuerWithResponse(CertificateIssuer is
      * <p>Gets the specificed certifcate issuer in the key vault. Prints out the returned certificate issuer details when
      * a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.getIssuerWithResponse#string-context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.getIssuerWithResponse#string-context -->
+     * <pre>
+     * Response&lt;CertificateIssuer&gt; issuerResponse = certificateClient.getIssuerWithResponse&#40;&quot;issuerName&quot;,
+     *     new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Retrieved issuer with name %s and provider %s%n&quot;, issuerResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *     issuerResponse.getValue&#40;&#41;.getProvider&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.getIssuerWithResponse#string-context -->
      *
      * @param issuerName The name of the certificate issuer to retrieve, cannot be null
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -730,7 +1009,13 @@ public Response<CertificateIssuer> getIssuerWithResponse(String issuerName, Cont
      * <p>Gets the specified certificate issuer in the key vault. Prints out the returned certificate issuer details
      * when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.getIssuer#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.getIssuer#string -->
+     * <pre>
+     * CertificateIssuer returnedIssuer = certificateClient.getIssuer&#40;&quot;issuerName&quot;&#41;;
+     * System.out.printf&#40;&quot;Retrieved issuer with name %s and provider %s%n&quot;, returnedIssuer.getName&#40;&#41;,
+     *     returnedIssuer.getProvider&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.getIssuer#string -->
      *
      * @param issuerName The name of the certificate issuer to retrieve, cannot be null
      * @throws ResourceNotFoundException when a certificate issuer with {@code issuerName} doesn't exist in the key vault.
@@ -750,7 +1035,13 @@ public CertificateIssuer getIssuer(String issuerName) {
      * <p>Deletes the certificate issuer in the Azure Key Vault. Prints out the
      * deleted certificate details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.deleteIssuerWithResponse#string-context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.deleteIssuerWithResponse#string-context -->
+     * <pre>
+     * CertificateIssuer deletedIssuer = certificateClient.deleteIssuer&#40;&quot;certificateName&quot;&#41;;
+     * System.out.printf&#40;&quot;Deleted certificate issuer with name %s and provider id %s%n&quot;, deletedIssuer.getName&#40;&#41;,
+     *     deletedIssuer.getProvider&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.deleteIssuerWithResponse#string-context -->
      *
      * @param issuerName The name of the certificate issuer to be deleted.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -771,7 +1062,15 @@ public Response<CertificateIssuer> deleteIssuerWithResponse(String issuerName, C
      * <p>Deletes the certificate issuer in the Azure Key Vault. Prints out the deleted certificate details when a
      * response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.deleteIssuer#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.deleteIssuer#string -->
+     * <pre>
+     * Response&lt;CertificateIssuer&gt; deletedIssuerWithResponse = certificateClient.
+     *     deleteIssuerWithResponse&#40;&quot;certificateName&quot;, new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Deleted certificate issuer with name %s and provider id %s%n&quot;,
+     *     deletedIssuerWithResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *     deletedIssuerWithResponse.getValue&#40;&#41;.getProvider&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.deleteIssuer#string -->
      *
      * @param issuerName The name of the certificate issuer to be deleted.
      * @throws ResourceNotFoundException when a certificate issuer with {@code issuerName} doesn't exist in the key vault.
@@ -792,7 +1091,15 @@ public CertificateIssuer deleteIssuer(String issuerName) {
      * call {@link CertificateClient#getIssuer(String)} . This will return the {@link CertificateIssuer issuer}
      * with all its properties.</p>.
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.listPropertiesOfIssuers}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.listPropertiesOfIssuers -->
+     * <pre>
+     * for &#40;IssuerProperties issuer : certificateClient.listPropertiesOfIssuers&#40;&#41;&#41; &#123;
+     *     CertificateIssuer retrievedIssuer = certificateClient.getIssuer&#40;issuer.getName&#40;&#41;&#41;;
+     *     System.out.printf&#40;&quot;Received issuer with name %s and provider %s%n&quot;, retrievedIssuer.getName&#40;&#41;,
+     *         retrievedIssuer.getProvider&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.listPropertiesOfIssuers -->
      *
      * @return A {@link PagedIterable} containing all of the {@link IssuerProperties certificate issuers} in the vault.
      */
@@ -810,7 +1117,15 @@ public PagedIterable<IssuerProperties> listPropertiesOfIssuers() {
      * call {@link CertificateClient#getIssuer(String)}. This will return the {@link CertificateIssuer issuer}
      * with all its properties.</p>.
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.listPropertiesOfIssuers#context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.listPropertiesOfIssuers#context -->
+     * <pre>
+     * for &#40;IssuerProperties issuer : certificateClient.listPropertiesOfIssuers&#40;new Context&#40;key1, value1&#41;&#41;&#41; &#123;
+     *     CertificateIssuer retrievedIssuer = certificateClient.getIssuer&#40;issuer.getName&#40;&#41;&#41;;
+     *     System.out.printf&#40;&quot;Received issuer with name %s and provider %s%n&quot;, retrievedIssuer.getName&#40;&#41;,
+     *         retrievedIssuer.getProvider&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.listPropertiesOfIssuers#context -->
      *
      * @param context Additional context that is passed through the Http pipeline during the service call.
      * @return A {@link PagedIterable} containing all of the {@link IssuerProperties certificate issuers} in the vault.
@@ -828,7 +1143,15 @@ public PagedIterable<IssuerProperties> listPropertiesOfIssuers(Context context)
      * <p>Gets the certificate issuer, changes its attributes/properties then updates it in the Azure Key Vault. Prints out the
      * returned certificate issuer details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.updateIssuer#CertificateIssuer}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.updateIssuer#CertificateIssuer -->
+     * <pre>
+     * CertificateIssuer returnedIssuer = certificateClient.getIssuer&#40;&quot;issuerName&quot;&#41;;
+     * returnedIssuer.setAccountId&#40;&quot;newAccountId&quot;&#41;;
+     * CertificateIssuer updatedIssuer = certificateClient.updateIssuer&#40;returnedIssuer&#41;;
+     * System.out.printf&#40;&quot;Updated issuer with name %s, provider %s and account Id %s%n&quot;, updatedIssuer.getName&#40;&#41;,
+     *     updatedIssuer.getProvider&#40;&#41;, updatedIssuer.getAccountId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.updateIssuer#CertificateIssuer -->
      *
      * @param issuer The {@link CertificateIssuer issuer} with updated properties.
      * @throws NullPointerException if {@code issuer} is {@code null}.
@@ -849,7 +1172,18 @@ public CertificateIssuer updateIssuer(CertificateIssuer issuer) {
      * <p>Gets the certificate issuer, changes its attributes/properties then updates it in the Azure Key Vault. Prints out the
      * returned certificate issuer details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.updateIssuerWithResponse#CertificateIssuer-Context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.updateIssuerWithResponse#CertificateIssuer-Context -->
+     * <pre>
+     * CertificateIssuer issuer = certificateClient.getIssuer&#40;&quot;issuerName&quot;&#41;;
+     * returnedIssuer.setAccountId&#40;&quot;newAccountId&quot;&#41;;
+     * Response&lt;CertificateIssuer&gt; updatedIssuerWithResponse = certificateClient.updateIssuerWithResponse&#40;issuer,
+     *     new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Updated issuer with name %s, provider %s and account Id %s%n&quot;,
+     *     updatedIssuerWithResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *     updatedIssuerWithResponse.getValue&#40;&#41;.getProvider&#40;&#41;,
+     *     updatedIssuerWithResponse.getValue&#40;&#41;.getAccountId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.updateIssuerWithResponse#CertificateIssuer-Context -->
      *
      * @param issuer The {@link CertificateIssuer issuer} with updated properties.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -871,7 +1205,15 @@ public Response<CertificateIssuer> updateIssuerWithResponse(CertificateIssuer is
      * <p><strong>Code Samples</strong></p>
      * <p>Sets the certificate contacts in the Azure Key Vault. Prints out the returned contacts details.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.setContacts#contacts}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.setContacts#contacts -->
+     * <pre>
+     * CertificateContact contactToAdd = new CertificateContact&#40;&#41;.setName&#40;&quot;user&quot;&#41;.setEmail&#40;&quot;useremail&#64;example.com&quot;&#41;;
+     * for &#40;CertificateContact contact : certificateClient.setContacts&#40;Collections.singletonList&#40;contactToAdd&#41;&#41;&#41; &#123;
+     *     System.out.printf&#40;&quot;Added contact with name %s and email %s to key vault%n&quot;, contact.getName&#40;&#41;,
+     *         contact.getEmail&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.setContacts#contacts -->
      *
      * @param contacts The list of contacts to set on the vault.
      * @throws HttpRequestException when a contact information provided is invalid/incomplete.
@@ -890,7 +1232,16 @@ public PagedIterable<CertificateContact> setContacts(List<CertificateContact> co
      * <p><strong>Code Samples</strong></p>
      * <p>Sets the certificate contacts in the Azure Key Vault. Prints out the returned contacts details.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.setContacts#contacts-context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.setContacts#contacts-context -->
+     * <pre>
+     * CertificateContact sampleContact = new CertificateContact&#40;&#41;.setName&#40;&quot;user&quot;&#41;.setEmail&#40;&quot;useremail&#64;example.com&quot;&#41;;
+     * for &#40;CertificateContact contact : certificateClient.setContacts&#40;Collections.singletonList&#40;sampleContact&#41;,
+     *     new Context&#40;key1, value1&#41;&#41;&#41; &#123;
+     *     System.out.printf&#40;&quot;Added contact with name %s and email %s to key vault%n&quot;, contact.getName&#40;&#41;,
+     *         contact.getEmail&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.setContacts#contacts-context -->
      *
      * @param contacts The list of contacts to set on the vault.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -908,7 +1259,14 @@ public PagedIterable<CertificateContact> setContacts(List<CertificateContact> co
      * <p><strong>Code Samples</strong></p>
      * <p>Lists the certificate contacts in the Azure Key Vault. Prints out the returned contacts details in the response.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.listContacts}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.listContacts -->
+     * <pre>
+     * for &#40;CertificateContact contact : certificateClient.listContacts&#40;&#41;&#41; &#123;
+     *     System.out.printf&#40;&quot;Added contact with name %s and email %s to key vault%n&quot;, contact.getName&#40;&#41;,
+     *         contact.getEmail&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.listContacts -->
      *
      * @return A {@link PagedIterable} containing all of the {@link CertificateContact certificate contacts} in the vault.
      */
@@ -923,7 +1281,14 @@ public PagedIterable<CertificateContact> listContacts() {
      * <p><strong>Code Samples</strong></p>
      * <p>Lists the certificate contacts in the Azure Key Vault. Prints out the returned contacts details in the response.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.listContacts#context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.listContacts#context -->
+     * <pre>
+     * for &#40;CertificateContact contact : certificateClient.listContacts&#40;new Context&#40;key1, value1&#41;&#41;&#41; &#123;
+     *     System.out.printf&#40;&quot;Added contact with name %s and email %s to key vault%n&quot;, contact.getName&#40;&#41;,
+     *         contact.getEmail&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.listContacts#context -->
      *
      * @param context Additional context that is passed through the Http pipeline during the service call.
      * @return A {@link PagedIterable} containing all of the {@link CertificateContact certificate contacts} in the vault.
@@ -940,7 +1305,14 @@ public PagedIterable<CertificateContact> listContacts(Context context) {
      * <p>Deletes the certificate contacts in the Azure Key Vault. Subscribes to the call and prints out the
      * deleted contacts details.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.deleteContacts}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.deleteContacts -->
+     * <pre>
+     * for &#40;CertificateContact contact : certificateClient.deleteContacts&#40;&#41;&#41; &#123;
+     *     System.out.printf&#40;&quot;Deleted contact with name %s and email %s from key vault%n&quot;, contact.getName&#40;&#41;,
+     *         contact.getEmail&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.deleteContacts -->
      *
      * @return A {@link PagedIterable} containing all of the deleted {@link CertificateContact certificate contacts} in the vault.
      */
@@ -955,7 +1327,14 @@ public PagedIterable<CertificateContact> deleteContacts() {
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes the certificate contacts in the Azure Key Vault. Prints out the deleted contacts details in the response.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.deleteContacts#context}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.deleteContacts#context -->
+     * <pre>
+     * for &#40;CertificateContact contact : certificateClient.deleteContacts&#40;new Context&#40;key1, value1&#41;&#41;&#41; &#123;
+     *     System.out.printf&#40;&quot;Deleted contact with name %s and email %s from key vault%n&quot;, contact.getName&#40;&#41;,
+     *         contact.getEmail&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.deleteContacts#context -->
      *
      * @param context Additional context that is passed through the Http pipeline during the service call.
      * @return A {@link PagedIterable} containing all of the deleted {@link CertificateContact certificate contacts} in the vault.
@@ -973,7 +1352,14 @@ public PagedIterable<CertificateContact> deleteContacts(Context context) {
      * <p>Triggers certificate creation and then deletes the certificate creation operation in the Azure Key Vault. Subscribes to the call and prints out the
      * deleted certificate operation details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.deleteCertificateOperation#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.deleteCertificateOperation#string -->
+     * <pre>
+     * Response&lt;CertificateOperation&gt; deletedCertificateOperationWithResponse = certificateClient
+     *     .deleteCertificateOperationWithResponse&#40;&quot;certificateName&quot;, new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Deleted Certificate Operation's last status %s%n&quot;,
+     *     deletedCertificateOperationWithResponse.getValue&#40;&#41;.getStatus&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.deleteCertificateOperation#string -->
      *
      * @param certificateName The name of the certificate.
      * @throws ResourceNotFoundException when a certificate operation for a certificate with {@code certificateName} doesn't exist in the key vault.
@@ -993,7 +1379,13 @@ public CertificateOperation deleteCertificateOperation(String certificateName) {
      * <p>Triggers certificate creation and then deletes the certificate creation operation in the Azure Key Vault. Subscribes to the call and prints out the
      * deleted certificate operation details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.deleteCertificateOperationWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.deleteCertificateOperationWithResponse#string -->
+     * <pre>
+     * CertificateOperation deletedCertificateOperation = certificateClient
+     *     .deleteCertificateOperation&#40;&quot;certificateName&quot;&#41;;
+     * System.out.printf&#40;&quot;Deleted Certificate Operation's last status %s%n&quot;, deletedCertificateOperation.getStatus&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.deleteCertificateOperationWithResponse#string -->
      *
      * @param certificateName The name of the certificate.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -1013,7 +1405,13 @@ public Response<CertificateOperation> deleteCertificateOperationWithResponse(Str
      * <p>Triggers certificate creation and then cancels the certificate creation operation in the Azure Key Vault. Subscribes to the call and prints out the
      * updated certificate operation details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.cancelCertificateOperation#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.cancelCertificateOperation#string -->
+     * <pre>
+     * CertificateOperation certificateOperation = certificateClient
+     *     .cancelCertificateOperation&#40;&quot;certificateName&quot;&#41;;
+     * System.out.printf&#40;&quot;Certificate Operation status %s%n&quot;, certificateOperation.getStatus&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.cancelCertificateOperation#string -->
      *
      * @param certificateName The name of the certificate which is in the process of being created.
      * @throws ResourceNotFoundException when a certificate operation for a certificate with {@code name} doesn't exist in the key vault.
@@ -1032,7 +1430,13 @@ public CertificateOperation cancelCertificateOperation(String certificateName) {
      * <p>Triggers certificate creation and then cancels the certificate creation operation in the Azure Key Vault. Subscribes to the call and prints out the
      * updated certificate operation details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.cancelCertificateOperationWithResponse#string}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.cancelCertificateOperationWithResponse#string -->
+     * <pre>
+     * Response&lt;CertificateOperation&gt; certificateOperationWithResponse = certificateClient
+     *     .cancelCertificateOperationWithResponse&#40;&quot;certificateName&quot;, new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Certificate Operation status %s%n&quot;, certificateOperationWithResponse.getValue&#40;&#41;.getStatus&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.cancelCertificateOperationWithResponse#string -->
      *
      * @param certificateName The name of the certificate which is in the process of being created.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -1052,7 +1456,17 @@ public Response<CertificateOperation> cancelCertificateOperationWithResponse(Str
      * <p><strong>Code Samples</strong></p>
      * <p> Merges a certificate with a kay pair available in the service.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.mergeCertificate#config}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.mergeCertificate#config -->
+     * <pre>
+     * List&lt;byte[]&gt; x509CertificatesToMerge = new ArrayList&lt;&gt;&#40;&#41;;
+     * MergeCertificateOptions config =
+     *     new MergeCertificateOptions&#40;&quot;certificateName&quot;, x509CertificatesToMerge&#41;
+     *         .setEnabled&#40;false&#41;;
+     * KeyVaultCertificate mergedCertificate = certificateClient.mergeCertificate&#40;config&#41;;
+     * System.out.printf&#40;&quot;Received Certificate with name %s and key id %s%n&quot;,
+     *     mergedCertificate.getProperties&#40;&#41;.getName&#40;&#41;, mergedCertificate.getKeyId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.mergeCertificate#config -->
      *
      * @param mergeCertificateOptions the merge certificate configuration holding the x509 certificates.
      * @throws NullPointerException when {@code mergeCertificateOptions} is null.
@@ -1071,7 +1485,19 @@ public KeyVaultCertificateWithPolicy mergeCertificate(MergeCertificateOptions me
      * <p><strong>Code Samples</strong></p>
      * <p> Merges a certificate with a kay pair available in the service.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.mergeCertificateWithResponse#config}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.mergeCertificateWithResponse#config -->
+     * <pre>
+     * List&lt;byte[]&gt; x509CertsToMerge = new ArrayList&lt;&gt;&#40;&#41;;
+     * MergeCertificateOptions mergeConfig =
+     *     new MergeCertificateOptions&#40;&quot;certificateName&quot;, x509CertsToMerge&#41;
+     *         .setEnabled&#40;false&#41;;
+     * Response&lt;KeyVaultCertificateWithPolicy&gt; mergedCertificateWithResponse =
+     *     certificateClient.mergeCertificateWithResponse&#40;mergeConfig, new Context&#40;key2, value2&#41;&#41;;
+     * System.out.printf&#40;&quot;Received Certificate with name %s and key id %s%n&quot;,
+     *     mergedCertificateWithResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getName&#40;&#41;,
+     *     mergedCertificateWithResponse.getValue&#40;&#41;.getKeyId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.mergeCertificateWithResponse#config -->
      *
      * @param mergeCertificateOptions the merge certificate configuration holding the x509 certificates.
      * @param context Additional context that is passed through the Http pipeline during the service call.
@@ -1092,7 +1518,16 @@ public Response<KeyVaultCertificateWithPolicy> mergeCertificateWithResponse(Merg
      * <p><strong>Code Samples</strong></p>
      * <p> Imports a certificate into the key vault.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.importCertificate#options}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.importCertificate#options -->
+     * <pre>
+     * byte[] certificateToImport = new byte[100];
+     * ImportCertificateOptions config =
+     *     new ImportCertificateOptions&#40;&quot;certificateName&quot;, certificateToImport&#41;.setEnabled&#40;false&#41;;
+     * KeyVaultCertificate importedCertificate = certificateClient.importCertificate&#40;config&#41;;
+     * System.out.printf&#40;&quot;Received Certificate with name %s and key id %s%n&quot;,
+     *     importedCertificate.getProperties&#40;&#41;.getName&#40;&#41;, importedCertificate.getKeyId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.importCertificate#options -->
      *
      * @param importCertificateOptions The details of the certificate to import to the key vault
      * @throws HttpRequestException when the {@code importCertificateOptions} are invalid.
@@ -1110,7 +1545,18 @@ public KeyVaultCertificateWithPolicy importCertificate(ImportCertificateOptions
      * <p><strong>Code Samples</strong></p>
      * <p> Imports a certificate into the key vault.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.importCertificateWithResponse#options}
+     * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.importCertificateWithResponse#options -->
+     * <pre>
+     * byte[] certToImport = new byte[100];
+     * ImportCertificateOptions importCertificateOptions =
+     *     new ImportCertificateOptions&#40;&quot;certificateName&quot;, certToImport&#41;.setEnabled&#40;false&#41;;
+     * Response&lt;KeyVaultCertificateWithPolicy&gt; importedCertificateWithResponse =
+     *     certificateClient.importCertificateWithResponse&#40;importCertificateOptions, new Context&#40;key2, value2&#41;&#41;;
+     * System.out.printf&#40;&quot;Received Certificate with name %s and key id %s%n&quot;,
+     *     importedCertificateWithResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getName&#40;&#41;,
+     *     importedCertificateWithResponse.getValue&#40;&#41;.getKeyId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.certificates.CertificateClient.importCertificateWithResponse#options -->
      *
      * @param importCertificateOptions The details of the certificate to import to the key vault
      * @param context Additional context that is passed through the Http pipeline during the service call.
diff --git a/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateClientBuilder.java b/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateClientBuilder.java
index f755eea1d257e..63190aabe5507 100644
--- a/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateClientBuilder.java
+++ b/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateClientBuilder.java
@@ -43,25 +43,60 @@
  * CertificateAsyncClient}
  * are {@link String vaultUrl} and {@link TokenCredential credential}. </p>
  *
- * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.instantiation -->
+ * <pre>
+ * CertificateAsyncClient certificateAsyncClient = new CertificateClientBuilder&#40;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.vault.azure.net&#47;&quot;&#41;
+ *     .httpLogOptions&#40;new HttpLogOptions&#40;&#41;.setLogLevel&#40;HttpLogDetailLevel.BODY_AND_HEADERS&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.instantiation -->
  *
  * <p>The {@link HttpLogDetailLevel log detail level}, multiple custom {@link HttpLoggingPolicy policies} and custom
  * {@link HttpClient http client} can be optionally configured in the {@link CertificateClientBuilder}.</p>
  *
- * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.withhttpclient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.withhttpclient.instantiation -->
+ * <pre>
+ * CertificateAsyncClient certificateAsyncClient = new CertificateClientBuilder&#40;&#41;
+ *     .httpLogOptions&#40;new HttpLogOptions&#40;&#41;.setLogLevel&#40;HttpLogDetailLevel.BODY_AND_HEADERS&#41;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .httpClient&#40;HttpClient.createDefault&#40;&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.withhttpclient.instantiation -->
  *
  * <p>Alternatively, custom {@link HttpPipeline http pipeline} with custom {@link HttpPipelinePolicy} policies and
  * {@link String vaultUrl}
  * can be specified. It provides finer control over the construction of {@link CertificateAsyncClient} and {@link
  * CertificateClient}</p>
  *
- * {@codesnippet com.azure.security.keyvault.certificates.CertificateAsyncClient.pipeline.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.certificates.CertificateAsyncClient.pipeline.instantiation -->
+ * <pre>
+ * HttpPipeline pipeline = new HttpPipelineBuilder&#40;&#41;
+ *     .policies&#40;new KeyVaultCredentialPolicy&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;, new RetryPolicy&#40;&#41;&#41;
+ *     .build&#40;&#41;;
+ * CertificateAsyncClient certificateAsyncClient = new CertificateClientBuilder&#40;&#41;
+ *     .pipeline&#40;pipeline&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.azure.net&#47;&quot;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.certificates.CertificateAsyncClient.pipeline.instantiation -->
  *
  * <p> The minimal configuration options required by {@link CertificateClientBuilder certificateClientBuilder} to build
  * {@link CertificateClient}
  * are {@link String vaultUrl} and {@link TokenCredential credential}. </p>
  *
- * {@codesnippet com.azure.security.keyvault.certificates.CertificateClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.certificates.CertificateClient.instantiation -->
+ * <pre>
+ * CertificateClient certificateClient = new CertificateClientBuilder&#40;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.vault.azure.net&#47;&quot;&#41;
+ *     .httpLogOptions&#40;new HttpLogOptions&#40;&#41;.setLogLevel&#40;HttpLogDetailLevel.BODY_AND_HEADERS&#41;&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.certificates.CertificateClient.instantiation -->
  *
  * @see CertificateAsyncClient
  * @see CertificateClient
@@ -121,14 +156,14 @@ public CertificateClient buildClient() {
 
     /**
      * Creates a {@link CertificateAsyncClient} based on options set in the builder. Every time
-     * {@link #buildAsyncClient()} is called, a new instance of {@link CertificateAsyncClient} is created.
+     * {@code buildAsyncClient()} is called, a new instance of {@link CertificateAsyncClient} is created.
      *
      * <p>If {@link CertificateClientBuilder#pipeline(HttpPipeline) pipeline} is set, then the {@code pipeline} and
      * {@link CertificateClientBuilder#vaultUrl(String) serviceEndpoint} are used to create the {@link
      * CertificateClientBuilder client}. All other builder settings are ignored. If {@code pipeline} is not set, then
-     * {@link CertificateClientBuilder#credential(TokenCredential) key vault credential and {@link
+     * {@link CertificateClientBuilder#credential(TokenCredential) key vault credential} and {@link
      * CertificateClientBuilder#vaultUrl(String)} key vault url are required to build the {@link CertificateAsyncClient
-     * client}.}</p>
+     * client}.</p>
      *
      * @return A {@link CertificateAsyncClient} with the options set from the builder.
      *
diff --git a/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateServiceVersion.java b/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateServiceVersion.java
index 2e88096369c0f..3cf5099a1d37e 100644
--- a/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateServiceVersion.java
+++ b/sdk/keyvault/azure-security-keyvault-certificates/src/main/java/com/azure/security/keyvault/certificates/CertificateServiceVersion.java
@@ -9,9 +9,24 @@
  * The versions of Azure Key Vault Certificate supported by this client library.
  */
 public enum CertificateServiceVersion implements ServiceVersion {
+    /**
+     * Service version {@code 7.0}.
+     */
     V7_0("7.0"),
+
+    /**
+     * Service version {@code 7.1}.
+     */
     V7_1("7.1"),
+
+    /**
+     * Service version {@code 7.2}.
+     */
     V7_2("7.2"),
+
+    /**
+     * Service version {@code 7.3-preview}.
+     */
     V7_3_PREVIEW("7.3-preview");
 
     private final String version;
diff --git a/sdk/keyvault/azure-security-keyvault-certificates/src/samples/java/com/azure/security/keyvault/certificates/ReadmeSamples.java b/sdk/keyvault/azure-security-keyvault-certificates/src/samples/java/com/azure/security/keyvault/certificates/ReadmeSamples.java
new file mode 100644
index 0000000000000..bbf24b92e143b
--- /dev/null
+++ b/sdk/keyvault/azure-security-keyvault-certificates/src/samples/java/com/azure/security/keyvault/certificates/ReadmeSamples.java
@@ -0,0 +1,166 @@
+// Copyright (c) Microsoft Corporation. All rights reserved.
+// Licensed under the MIT License.
+
+package com.azure.security.keyvault.certificates;
+
+import com.azure.core.exception.ResourceNotFoundException;
+import com.azure.core.util.polling.LongRunningOperationStatus;
+import com.azure.core.util.polling.PollResponse;
+import com.azure.core.util.polling.SyncPoller;
+import com.azure.identity.DefaultAzureCredentialBuilder;
+import com.azure.security.keyvault.certificates.models.CertificateOperation;
+import com.azure.security.keyvault.certificates.models.CertificatePolicy;
+import com.azure.security.keyvault.certificates.models.CertificateProperties;
+import com.azure.security.keyvault.certificates.models.DeletedCertificate;
+import com.azure.security.keyvault.certificates.models.KeyVaultCertificate;
+import com.azure.security.keyvault.certificates.models.KeyVaultCertificateWithPolicy;
+
+@SuppressWarnings("unused")
+public class ReadmeSamples {
+    private final CertificateClient certificateClient = new CertificateClientBuilder()
+        .vaultUrl("<your-key-vault-url>")
+        .credential(new DefaultAzureCredentialBuilder().build())
+        .buildClient();
+
+    private final CertificateAsyncClient certificateAsyncClient = new CertificateClientBuilder()
+        .vaultUrl("<your-key-vault-url>")
+        .credential(new DefaultAzureCredentialBuilder().build())
+        .buildAsyncClient();
+
+    public void createCertificateClient() {
+        // BEGIN: readme-sample-createCertificateClient
+        CertificateClient certificateClient = new CertificateClientBuilder()
+            .vaultUrl("<your-key-vault-url>")
+            .credential(new DefaultAzureCredentialBuilder().build())
+            .buildClient();
+        // END: readme-sample-createCertificateClient
+    }
+
+    public void createCertificate() {
+        // BEGIN: readme-sample-createCertificate
+        SyncPoller<CertificateOperation, KeyVaultCertificateWithPolicy> certificatePoller =
+            certificateClient.beginCreateCertificate("certificateName", CertificatePolicy.getDefault());
+        certificatePoller.waitUntil(LongRunningOperationStatus.SUCCESSFULLY_COMPLETED);
+        KeyVaultCertificate certificate = certificatePoller.getFinalResult();
+        System.out.printf("Certificate created with name \"%s\"%n", certificate.getName());
+        // END: readme-sample-createCertificate
+    }
+
+    public void retrieveCertificate() {
+        // BEGIN: readme-sample-retrieveCertificate
+        KeyVaultCertificateWithPolicy certificate = certificateClient.getCertificate("<certificate-name>");
+        System.out.printf("Received certificate with name \"%s\", version %s and secret id %s%n",
+            certificate.getProperties().getName(), certificate.getProperties().getVersion(), certificate.getSecretId());
+        // END: readme-sample-retrieveCertificate
+    }
+
+    public void updateCertificate() {
+        // BEGIN: readme-sample-updateCertificate
+        // Get the certificate to update.
+        KeyVaultCertificate certificate = certificateClient.getCertificate("<certificate-name>");
+        // Update certificate enabled status.
+        certificate.getProperties().setEnabled(false);
+        KeyVaultCertificate updatedCertificate = certificateClient.updateCertificateProperties(certificate.getProperties());
+        System.out.printf("Updated certificate with name \"%s\" and enabled status \"%s\"%n",
+            updatedCertificate.getProperties().getName(), updatedCertificate.getProperties().isEnabled());
+        // END: readme-sample-updateCertificate
+    }
+
+    public void deleteCertificate() {
+        // BEGIN: readme-sample-deleteCertificate
+        SyncPoller<DeletedCertificate, Void> deleteCertificatePoller =
+            certificateClient.beginDeleteCertificate("<certificate-name>");
+
+        // Deleted certificate is accessible as soon as polling beings.
+        PollResponse<DeletedCertificate> pollResponse = deleteCertificatePoller.poll();
+
+        // Deletion date only works for a SoftDelete-enabled Key Vault.
+        System.out.printf("Deleted certificate with name \"%s\" and recovery id %s", pollResponse.getValue().getName(),
+            pollResponse.getValue().getRecoveryId());
+
+        // Certificate is being deleted on server.
+        deleteCertificatePoller.waitForCompletion();
+        // END: readme-sample-deleteCertificate
+    }
+
+    public void listCertificates() {
+        // BEGIN: readme-sample-listCertificates
+        // List operations don't return the certificates with their full information. So, for each returned certificate we call
+        // getCertificate to get the certificate with all its properties excluding the policy.
+        for (CertificateProperties certificateProperties : certificateClient.listPropertiesOfCertificates()) {
+            KeyVaultCertificate certificateWithAllProperties =
+                certificateClient.getCertificateVersion(certificateProperties.getName(), certificateProperties.getVersion());
+            System.out.printf("Received certificate with name \"%s\" and secret id %s",
+                certificateWithAllProperties.getProperties().getName(), certificateWithAllProperties.getSecretId());
+        }
+        // END: readme-sample-listCertificates
+    }
+
+    public void createCertificateAsync() {
+        // BEGIN: readme-sample-createCertificateAsync
+        // Creates a certificate using the default policy and polls on its progress.
+        certificateAsyncClient.beginCreateCertificate("<certificate-name>", CertificatePolicy.getDefault())
+            .subscribe(pollResponse -> {
+                System.out.println("---------------------------------------------------------------------------------");
+                System.out.println(pollResponse.getStatus());
+                System.out.println(pollResponse.getValue().getStatus());
+                System.out.println(pollResponse.getValue().getStatusDetails());
+            });
+        // END: readme-sample-createCertificateAsync
+    }
+
+    public void retrieveCertificateAsync() {
+        // BEGIN: readme-sample-retrieveCertificateAsync
+        certificateAsyncClient.getCertificate("<certificate-name>")
+            .subscribe(certificateResponse ->
+                System.out.printf("Certificate was returned with name \"%s\" and secretId %s%n",
+                    certificateResponse.getProperties().getName(), certificateResponse.getSecretId()));
+        // END: readme-sample-retrieveCertificateAsync
+    }
+
+    public void updateCertificateAsync() {
+        // BEGIN: readme-sample-updateCertificateAsync
+        certificateAsyncClient.getCertificate("<certificate-name>")
+            .flatMap(certificate -> {
+                // Update enabled status of the certificate.
+                certificate.getProperties().setEnabled(false);
+                return certificateAsyncClient.updateCertificateProperties(certificate.getProperties());
+            }).subscribe(certificateResponse -> System.out.printf("Certificate's enabled status: %s%n",
+                certificateResponse.getProperties().isEnabled()));
+        // END: readme-sample-updateCertificateAsync
+    }
+
+    public void deleteCertificateAsync() {
+        // BEGIN: readme-sample-deleteCertificateAsync
+        certificateAsyncClient.beginDeleteCertificate("<certificate-name>")
+            .subscribe(pollResponse -> {
+                System.out.printf("Deletion status: %s%n", pollResponse.getStatus());
+                System.out.printf("Deleted certificate name: %s%n", pollResponse.getValue().getName());
+                System.out.printf("Certificate deletion date: %s%n", pollResponse.getValue().getDeletedOn());
+            });
+        // END: readme-sample-deleteCertificateAsync
+    }
+
+    public void listCertificateAsync() {
+        // BEGIN: readme-sample-listCertificateAsync
+        // The List Certificates operation returns certificates without their full properties, so for each certificate returned
+        // we call `getCertificate` to get all its attributes excluding the policy.
+        certificateAsyncClient.listPropertiesOfCertificates()
+            .flatMap(certificateProperties -> certificateAsyncClient
+                .getCertificateVersion(certificateProperties.getName(), certificateProperties.getVersion()))
+            .subscribe(certificateResponse ->
+                System.out.printf("Received certificate with name \"%s\" and key id %s", certificateResponse.getName(),
+                    certificateResponse.getKeyId()));
+        // END: readme-sample-listCertificateAsync
+    }
+
+    public void troubleshooting() {
+        // BEGIN: readme-sample-troubleshooting
+        try {
+            certificateClient.getCertificate("<deleted-certificate-name>");
+        } catch (ResourceNotFoundException e) {
+            System.out.println(e.getMessage());
+        }
+        // END: readme-sample-troubleshooting
+    }
+}
diff --git a/sdk/keyvault/azure-security-keyvault-jca/README.md b/sdk/keyvault/azure-security-keyvault-jca/README.md
index f3687da5f4d46..1288e5d1017d4 100644
--- a/sdk/keyvault/azure-security-keyvault-jca/README.md
+++ b/sdk/keyvault/azure-security-keyvault-jca/README.md
@@ -38,8 +38,7 @@ az keyvault create --resource-group <your-resource-group-name> --name <your-key-
 ### Server side SSL
 If you are looking to integrate the JCA provider to create an SSLServerSocket see the example below.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/jca/ServerSSLSample.java#L18-L30 -->
-```java
+```java readme-sample-serverSSL
 KeyVaultJcaProvider provider = new KeyVaultJcaProvider();
 Security.addProvider(provider);
 
@@ -60,8 +59,7 @@ Note if you want to use Azure Managed Identity, you should set the value of `azu
 ### Client side SSL
 If you are looking to integrate the JCA provider for client side socket connections, see the Apache HTTP client example below.
 
-<!-- embedme ./src/samples/java/com/azure/security/keyvault/jca/ClientSSLSample.java#L28-L61 -->
-```java
+```java readme-sample-clientSSL
 KeyVaultJcaProvider provider = new KeyVaultJcaProvider();
 Security.addProvider(provider);
 
diff --git a/sdk/keyvault/azure-security-keyvault-jca/pom.xml b/sdk/keyvault/azure-security-keyvault-jca/pom.xml
index 7cd2ab13e6816..aae747f537d83 100644
--- a/sdk/keyvault/azure-security-keyvault-jca/pom.xml
+++ b/sdk/keyvault/azure-security-keyvault-jca/pom.xml
@@ -22,6 +22,9 @@
         <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
         <jacoco.min.branchcoverage>0</jacoco.min.branchcoverage>
         <jacoco.min.linecoverage>0.05</jacoco.min.linecoverage>
+        <codesnippet.skip>false</codesnippet.skip>
+        <javadocDoclet></javadocDoclet>
+        <javadocDocletOptions></javadocDocletOptions>
     </properties>
 
     <dependencies>
diff --git a/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultJcaProvider.java b/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultJcaProvider.java
index 479fd1c936112..51e2e494d3c90 100644
--- a/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultJcaProvider.java
+++ b/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultJcaProvider.java
@@ -10,7 +10,6 @@
 import com.azure.security.keyvault.jca.implementation.signature.AbstractKeyVaultKeyLessSignature;
 
 import java.lang.reflect.InvocationTargetException;
-import java.security.AccessController;
 import java.security.PrivilegedAction;
 import java.security.Provider;
 import java.util.Arrays;
@@ -55,7 +54,7 @@ public KeyVaultJcaProvider() {
      */
     @SuppressWarnings("removal")
     private void initialize() {
-        AccessController.doPrivileged((PrivilegedAction<Object>) () -> {
+        java.security.AccessController.doPrivileged((PrivilegedAction<Object>) () -> {
             putService(
                 new Provider.Service(
                     this,
diff --git a/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultPrivateKey.java b/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultPrivateKey.java
index c45851bd00017..760b42a536ed0 100644
--- a/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultPrivateKey.java
+++ b/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultPrivateKey.java
@@ -20,8 +20,14 @@ public class KeyVaultPrivateKey implements PrivateKey, SecretKey {
      */
     private static final long serialVersionUID = 30_10_00;
 
+    /**
+     * Key ID.
+     */
     private String kid;
 
+    /**
+     * Algorithm.
+     */
     private String algorithm;
 
     /**
diff --git a/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultTrustManagerFactoryProvider.java b/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultTrustManagerFactoryProvider.java
index 768885006e52f..1261376b882fa 100644
--- a/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultTrustManagerFactoryProvider.java
+++ b/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultTrustManagerFactoryProvider.java
@@ -3,7 +3,6 @@
 
 package com.azure.security.keyvault.jca;
 
-import java.security.AccessController;
 import java.security.PrivilegedAction;
 import java.security.Provider;
 
@@ -45,7 +44,7 @@ public KeyVaultTrustManagerFactoryProvider() {
      */
     @SuppressWarnings("removal")
     private void initialize() {
-        AccessController.doPrivileged((PrivilegedAction<Object>) () -> {
+        java.security.AccessController.doPrivileged((PrivilegedAction<Object>) () -> {
             putService(
                 new Provider.Service(
                     this,
diff --git a/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/implementation/JREKeyStoreFactory.java b/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/implementation/JREKeyStoreFactory.java
index f4475e5c70583..8548e32ce3051 100644
--- a/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/implementation/JREKeyStoreFactory.java
+++ b/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/implementation/JREKeyStoreFactory.java
@@ -8,7 +8,6 @@
 import java.nio.file.Files;
 import java.nio.file.Path;
 import java.nio.file.Paths;
-import java.security.AccessController;
 import java.security.KeyStore;
 import java.security.KeyStoreException;
 import java.security.NoSuchAlgorithmException;
@@ -85,7 +84,7 @@ private static Path getConfiguredKeyStorePath() {
 
     @SuppressWarnings("removal")
     private static String  privilegedGetProperty(String theProp, String defaultVal) {
-        return AccessController.doPrivileged(
+        return java.security.AccessController.doPrivileged(
             (PrivilegedAction<String>) () -> {
                 String value = System.getProperty(theProp, "");
                 return (value.isEmpty()) ? defaultVal : value;
diff --git a/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/implementation/KeyVaultPrivateKey.java b/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/implementation/KeyVaultPrivateKey.java
index 31749b803f7d5..e7bbfdfa92cfc 100644
--- a/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/implementation/KeyVaultPrivateKey.java
+++ b/sdk/keyvault/azure-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/implementation/KeyVaultPrivateKey.java
@@ -16,8 +16,14 @@ public class KeyVaultPrivateKey implements PrivateKey, SecretKey {
      */
     private static final long serialVersionUID = 30_10_00;
 
+    /**
+     * Key ID.
+     */
     private String kid;
 
+    /**
+     * Algorithm.
+     */
     private String algorithm;
 
     private final KeyVaultClient keyVaultClient;
diff --git a/sdk/keyvault/azure-security-keyvault-jca/src/samples/java/com/azure/security/keyvault/jca/ClientSSLSample.java b/sdk/keyvault/azure-security-keyvault-jca/src/samples/java/com/azure/security/keyvault/jca/ClientSSLSample.java
index 421977f571507..6de8d95522985 100644
--- a/sdk/keyvault/azure-security-keyvault-jca/src/samples/java/com/azure/security/keyvault/jca/ClientSSLSample.java
+++ b/sdk/keyvault/azure-security-keyvault-jca/src/samples/java/com/azure/security/keyvault/jca/ClientSSLSample.java
@@ -25,6 +25,7 @@
 public class ClientSSLSample {
 
     public static void main(String[] args) throws Exception {
+        // BEGIN: readme-sample-clientSSL
         KeyVaultJcaProvider provider = new KeyVaultJcaProvider();
         Security.addProvider(provider);
 
@@ -59,6 +60,7 @@ public static void main(String[] args) throws Exception {
         } catch (IOException ioe) {
             ioe.printStackTrace();
         }
+        // END: readme-sample-clientSSL
     }
 
 }
diff --git a/sdk/keyvault/azure-security-keyvault-jca/src/samples/java/com/azure/security/keyvault/jca/ServerSSLSample.java b/sdk/keyvault/azure-security-keyvault-jca/src/samples/java/com/azure/security/keyvault/jca/ServerSSLSample.java
index 58006054aadb5..94a148036badd 100644
--- a/sdk/keyvault/azure-security-keyvault-jca/src/samples/java/com/azure/security/keyvault/jca/ServerSSLSample.java
+++ b/sdk/keyvault/azure-security-keyvault-jca/src/samples/java/com/azure/security/keyvault/jca/ServerSSLSample.java
@@ -15,6 +15,7 @@
 public class ServerSSLSample {
 
     public static void main(String[] args) throws Exception {
+        // BEGIN: readme-sample-serverSSL
         KeyVaultJcaProvider provider = new KeyVaultJcaProvider();
         Security.addProvider(provider);
 
@@ -28,6 +29,7 @@ public static void main(String[] args) throws Exception {
 
         SSLServerSocketFactory socketFactory = context.getServerSocketFactory();
         SSLServerSocket serverSocket = (SSLServerSocket) socketFactory.createServerSocket(8765);
+        // END: readme-sample-serverSSL
     }
 
 }
diff --git a/sdk/keyvault/azure-security-keyvault-keys/README.md b/sdk/keyvault/azure-security-keyvault-keys/README.md
index 9baa2c2e2b17e..a55b6404be0be 100644
--- a/sdk/keyvault/azure-security-keyvault-keys/README.md
+++ b/sdk/keyvault/azure-security-keyvault-keys/README.md
@@ -26,9 +26,9 @@ Maven dependency for the Azure Key Vault Key client library. Add it to your proj
 - [Azure Subscription][azure_subscription]
 - An existing [Azure Key Vault][azure_keyvault]. If you need to create a Key Vault, you can use the [Azure Cloud Shell][azure_cloud_shell] to create one with this Azure CLI command. Replace `<your-resource-group-name>` and `<your-key-vault-name>` with your own, unique names:
 
-    ```Bash
-    az keyvault create --resource-group <your-resource-group-name> --name <your-key-vault-name>
-    ```
+```bash
+az keyvault create --resource-group <your-resource-group-name> --name <your-key-vault-name>
+```
 
 ### Authenticate the client
 In order to interact with the Azure Key Vault service, you'll need to create an instance of the [KeyClient](#create-key-client) class. You would need a **vault url** and **client secret credentials (client id, client secret, tenant id)** to instantiate a client object using the default `DefaultAzureCredential` examples shown in this document.
@@ -42,56 +42,56 @@ Here is an [Azure Cloud Shell][azure_cloud_shell] snippet below to
 
  * Create a service principal and configure its access to Azure resources:
 
-    ```Bash
-    az ad sp create-for-rbac -n <your-application-name> --skip-assignment
-    ```
-
-    Output:
-
-    ```json
-    {
-        "appId": "generated-app-ID",
-        "displayName": "dummy-app-name",
-        "name": "http://dummy-app-name",
-        "password": "random-password",
-        "tenant": "tenant-ID"
-    }
-    ```
+```bash
+az ad sp create-for-rbac -n <your-application-name> --skip-assignment
+````
+
+Output:
+
+```json
+{
+    "appId": "generated-app-ID",
+    "displayName": "dummy-app-name",
+    "name": "http://dummy-app-name",
+    "password": "random-password",
+    "tenant": "tenant-ID"
+}
+```
 
 * Take note of the service principal objectId
-    ```PowerShell
-    az ad sp show --id <appId> --query objectId
-    ```
-  Output:
-    ```
-    "<your-service-principal-object-id>"
-    ```
+```PowerShell
+az ad sp show --id <appId> --query objectId
+```
+Output:
+```
+"<your-service-principal-object-id>"
+```
 
 * Use the returned credentials above to set the **AZURE_CLIENT_ID** (appId), **AZURE_CLIENT_SECRET** (password), and **AZURE_TENANT_ID** (tenantId) environment variables. The following example shows a way to do this in Bash:
 
-    ```Bash
-    export AZURE_CLIENT_ID="generated-app-ID"
-    export AZURE_CLIENT_SECRET="random-password"
-    export AZURE_TENANT_ID="tenant-ID"
-    ```
+```bash
+export AZURE_CLIENT_ID="generated-app-ID"
+export AZURE_CLIENT_SECRET="random-password"
+export AZURE_TENANT_ID="tenant-ID"
+```
 
 * Grant the aforementioned application authorization to perform key operations on the Key Vault:
 
-    ```Bash
-    az keyvault set-policy --name <your-key-vault-name> --spn $AZURE_CLIENT_ID --key-permissions backup delete get list create update encrypt decrypt
-    ```
+```bash
+az keyvault set-policy --name <your-key-vault-name> --spn $AZURE_CLIENT_ID --key-permissions backup delete get list create update encrypt decrypt
+```
 
-    > --key-permissions:
-    > Accepted values: backup, delete, get, list, purge, recover, restore, create, update, encrypt, decrypt, import, wrapkey, unwrapkey, verify, sign
+> --key-permissions:
+> Accepted values: backup, delete, get, list, purge, recover, restore, create, update, encrypt, decrypt, import, wrapkey, unwrapkey, verify, sign
 
-    If you have enabled role-based access control (RBAC) for Key Vault instead, you can find roles like "Key Vault Crypto Officer" in our [RBAC guide][rbac_guide].
-    If you are managing your keys using Managed HSM, read about its [access control][access_control] that supports different built-in roles isolated from Azure Resource Manager (ARM).
+If you have enabled role-based access control (RBAC) for Key Vault instead, you can find roles like "Key Vault Crypto Officer" in our [RBAC guide][rbac_guide].
+If you are managing your keys using Managed HSM, read about its [access control][access_control] that supports different built-in roles isolated from Azure Resource Manager (ARM).
 
 * Use the aforementioned Key Vault name to retrieve details of your Key Vault, which also contain your Key Vault URL:
 
-    ```Bash
-    az keyvault show --name <your-key-vault-name>
-    ```
+```bash
+az keyvault show --name <your-key-vault-name>
+```
 
 * Create the Azure Key Vault or Managed HSM and grant the above mentioned application authorization to perform administrative operations on the Managed HSM (replace `<your-resource-group-name>` and `<your-key-vault-name>` with your own unique names and `<your-service-principal-object-id>` with the value from above):
 
@@ -134,11 +134,7 @@ az keyvault security-domain download --hsm-name <your-key-vault-name> --sd-wrapp
 #### Create Key client
 Once you've populated the **AZURE_CLIENT_ID**, **AZURE_CLIENT_SECRET**, and **AZURE_TENANT_ID** environment variables and replaced **your-key-vault-url** with the URI returned above, you can create the KeyClient:
 
-```Java
-import com.azure.identity.DefaultAzureCredentialBuilder;
-import com.azure.security.keyvault.keys.KeyClient;
-import com.azure.security.keyvault.keys.KeyClientBuilder;
-
+```java readme-sample-createKeyClient
 KeyClient keyClient = new KeyClientBuilder()
     .vaultUrl("<your-key-vault-url>")
     .credential(new DefaultAzureCredentialBuilder().build())
@@ -150,11 +146,7 @@ KeyClient keyClient = new KeyClientBuilder()
 #### Create Cryptography client
 Once you've populated the **AZURE_CLIENT_ID**, **AZURE_CLIENT_SECRET**, and **AZURE_TENANT_ID** environment variables and replaced **your-vault-url** with the URI returned above, you can create the CryptographyClient:
 
-```Java
-import com.azure.identity.DefaultAzureCredentialBuilder;
-import com.azure.security.keyvault.keys.cryptography.CryptographyClient;
-import com.azure.security.keyvault.keys.cryptography.CryptographyClientBuilder;
-
+```java readme-sample-createCryptographyClient
 // Create client with key identifier from key vault.
 CryptographyClient cryptoClient = new CryptographyClientBuilder()
     .credential(new DefaultAzureCredentialBuilder().build())
@@ -194,20 +186,7 @@ The following sections provide several code snippets covering some of the most c
 Create a key to be stored in the Azure Key Vault.
 - `createKey` creates a new key in the key vault. If a key with the same name already exists then a new version of the key is created.
 
-```Java
-import com.azure.identity.DefaultAzureCredentialBuilder;
-import com.azure.security.keyvault.keys.KeyClient;
-import com.azure.security.keyvault.keys.models.CreateEcKeyOptions;
-import com.azure.security.keyvault.keys.models.CreateRsaKeyOptions;
-import com.azure.security.keyvault.keys.models.KeyCurveName;
-import com.azure.security.keyvault.keys.models.KeyVaultKey;
-import com.azure.security.keyvault.keys.KeyClientBuilder;
-
-KeyClient keyClient = new KeyClientBuilder()
-    .vaultUrl("<your-key-vault-url>")
-    .credential(new DefaultAzureCredentialBuilder().build())
-    .buildClient();
-
+```java readme-sample-createKey
 KeyVaultKey rsaKey = keyClient.createRsaKey(new CreateRsaKeyOptions("CloudRsaKey")
     .setExpiresOn(OffsetDateTime.now().plusYears(1))
     .setKeySize(2048));
@@ -222,7 +201,7 @@ System.out.printf("Key created with name \"%s\" and id %s%n", ecKey.getName(), e
 ### Retrieve a key
 Retrieve a previously stored key by calling `getKey`.
 
-```Java
+```java readme-sample-retrieveKey
 KeyVaultKey key = keyClient.getKey("<key-name>");
 System.out.printf("A key was returned with name \"%s\" and id %s%n", key.getName(), key.getId());
 ```
@@ -230,7 +209,7 @@ System.out.printf("A key was returned with name \"%s\" and id %s%n", key.getName
 ### Update an existing key
 Update an existing key by calling `updateKeyProperties`.
 
-```Java
+```java readme-sample-updateKey
 // Get the key to update.
 KeyVaultKey key = keyClient.getKey("<key-name>");
 // Update the expiry time of the key.
@@ -242,7 +221,7 @@ System.out.printf("Key's updated expiry time: %s%n", updatedKey.getProperties().
 ### Delete a key
 Delete an existing key by calling `beginDeleteKey`.
 
-```Java
+```java readme-sample-deleteKey
 SyncPoller<DeletedKey, Void> deletedKeyPoller = keyClient.beginDeleteKey("<key-name>");
 
 PollResponse<DeletedKey> deletedKeyPollResponse = deletedKeyPoller.poll();
@@ -259,7 +238,7 @@ deletedKeyPoller.waitForCompletion();
 ### List keys
 List the keys in the key vault by calling `listPropertiesOfKeys`.
 
-```java
+```java readme-sample-listKeys
 // List operations don't return the keys with key material information. So, for each returned key we call getKey to
 // get the key with its key material information.
 for (KeyProperties keyProperties : keyClient.listPropertiesOfKeys()) {
@@ -272,14 +251,9 @@ for (KeyProperties keyProperties : keyClient.listPropertiesOfKeys()) {
 ### Encrypt
 Encrypt plain text by calling `encrypt`.
 
-```java
-CryptographyClient cryptoClient = new CryptographyClientBuilder()
-    .credential(new DefaultAzureCredentialBuilder().build())
-    .keyIdentifier("<your-key-id-from-key-vault")
-    .buildClient();
-
+```java readme-sample-encrypt
 byte[] plaintext = new byte[100];
-new Random(0x1234567L).nextBytes(plaintext);
+new SecureRandom(SEED).nextBytes(plaintext);
 
 // Let's encrypt a simple plain text of size 100 bytes.
 EncryptResult encryptionResult = cryptoClient.encrypt(EncryptionAlgorithm.RSA_OAEP, plaintext);
@@ -290,9 +264,9 @@ System.out.printf("Returned ciphertext size is %d bytes with algorithm \"%s\"%n"
 ### Decrypt
 Decrypt encrypted content by calling `decrypt`.
 
-```java
+```java readme-sample-decrypt
 byte[] plaintext = new byte[100];
-new Random(0x1234567L).nextBytes(plaintext);
+new SecureRandom(SEED).nextBytes(plaintext);
 EncryptResult encryptionResult = cryptoClient.encrypt(EncryptionAlgorithm.RSA_OAEP, plaintext);
 
 //Let's decrypt the encrypted result.
@@ -316,26 +290,15 @@ The following sections provide several code snippets covering some of the most c
 Create a key to be stored in the Azure Key Vault.
 - `createKey` creates a new key in the key vault. If a key with the same name already exists then a new version of the key is created.
 
-```Java
-import com.azure.identity.DefaultAzureCredentialBuilder;
-import com.azure.security.keyvault.keys.KeyAsyncClient;
-import com.azure.security.keyvault.keys.KeyClientBuilder;
-import com.azure.security.keyvault.keys.models.CreateEcKeyOptions;
-import com.azure.security.keyvault.keys.models.CreateRsaKeyOptions;
-
-KeyAsyncClient keyAsyncClient = new KeyClientBuilder()
-    .vaultUrl("<your-key-vault-url>")
-    .credential(new DefaultAzureCredentialBuilder().build())
-    .buildAsyncClient();
-
+```java readme-sample-createKeyAsync
 keyAsyncClient.createRsaKey(new CreateRsaKeyOptions("CloudRsaKey")
-    .setExpiresOn(OffsetDateTime.now().plusYears(1))
-    .setKeySize(2048))
+        .setExpiresOn(OffsetDateTime.now().plusYears(1))
+        .setKeySize(2048))
     .subscribe(key ->
         System.out.printf("Key created with name \"%s\" and id %s%n", key.getName(), key.getId()));
 
 keyAsyncClient.createEcKey(new CreateEcKeyOptions("CloudEcKey")
-    .setExpiresOn(OffsetDateTime.now().plusYears(1)))
+        .setExpiresOn(OffsetDateTime.now().plusYears(1)))
     .subscribe(key ->
         System.out.printf("Key created with name \"%s\" and id %s%n", key.getName(), key.getId()));
 ```
@@ -343,7 +306,7 @@ keyAsyncClient.createEcKey(new CreateEcKeyOptions("CloudEcKey")
 ### Retrieve a key asynchronously
 Retrieve a previously stored key by calling `getKey`.
 
-```Java
+```java readme-sample-retrieveKeyAsync
 keyAsyncClient.getKey("<key-name>")
     .subscribe(key ->
         System.out.printf("Key was returned with name \"%s\" and id %s%n", key.getName(), key.getId()));
@@ -352,25 +315,23 @@ keyAsyncClient.getKey("<key-name>")
 ### Update an existing key asynchronously
 Update an existing key by calling `updateKeyProperties`.
 
-```Java
-// Get the key.
+```java readme-sample-updateKeyAsync
 keyAsyncClient.getKey("<key-name>")
-    .subscribe(key -> {
+    .flatMap(key -> {
         // Update the expiry time of the key.
         key.getProperties().setExpiresOn(OffsetDateTime.now().plusDays(50));
-        keyAsyncClient.updateKeyProperties(key.getProperties())
-            .subscribe(updatedKey ->
-                System.out.printf("Key's updated expiry time: %s%n", updatedKey.getProperties().getExpiresOn()));
-   });
+        return keyAsyncClient.updateKeyProperties(key.getProperties());
+    }).subscribe(updatedKey ->
+        System.out.printf("Key's updated expiry time: %s%n", updatedKey.getProperties().getExpiresOn()));
 ```
 
 ### Delete a key asynchronously
 Delete an existing key by calling `beginDeleteKey`.
 
-```java
+```java readme-sample-deleteKeyAsync
 keyAsyncClient.beginDeleteKey("<key-name>")
     .subscribe(pollResponse -> {
-        System.out.printf("Deletetion status: %s%n", pollResponse.getStatus());
+        System.out.printf("Deletion status: %s%n", pollResponse.getStatus());
         System.out.printf("Deleted key name: %s%n", pollResponse.getValue().getName());
         System.out.printf("Key deletion date: %s%n", pollResponse.getValue().getDeletedOn());
     });
@@ -379,62 +340,53 @@ keyAsyncClient.beginDeleteKey("<key-name>")
 ### List keys asynchronously
 List the keys in the Azure Key Vault by calling `listPropertiesOfKeys`.
 
-```Java
+```java readme-sample-listKeysAsync
 // The List Keys operation returns keys without their value, so for each key returned we call `getKey` to get its value
 // as well.
 keyAsyncClient.listPropertiesOfKeys()
-    .subscribe(keyProperties ->
-        keyAsyncClient.getKey(keyProperties.getName(), keyProperties.getVersion())
-            .subscribe(key ->
-                System.out.printf("Received key with name \"%s\" and type \"%s\"", key.getName(), key.getKeyType())));
+    .flatMap(keyProperties -> keyAsyncClient.getKey(keyProperties.getName(), keyProperties.getVersion()))
+    .subscribe(key ->
+        System.out.printf("Received key with name \"%s\" and type \"%s\"", key.getName(), key.getKeyType()));
 ```
 
 ### Encrypt asynchronously
 Encrypt plain text by calling `encrypt`.
 
-```java
-CryptographyAsyncClient cryptoAsyncClient = new CryptographyClientBuilder()
-    .credential(new DefaultAzureCredentialBuilder().build())
-    .keyIdentifier("<your-key-id-from-key-vault>")
-    .buildAsyncClient();
-
+```java readme-sample-encryptAsync
 byte[] plaintext = new byte[100];
-new Random(0x1234567L).nextBytes(plaintext);
+new SecureRandom(SEED).nextBytes(plaintext);
 
 // Let's encrypt a simple plain text of size 100 bytes.
 cryptoAsyncClient.encrypt(EncryptionAlgorithm.RSA_OAEP, plaintext)
-    .subscribe(encryptionResult -> {
-        System.out.printf("Returned ciphertext size is %d bytes with algorithm \"%s\"%n",
-            encryptionResult.getCipherText().length, encryptionResult.getAlgorithm());
-    });
+    .subscribe(encryptionResult -> System.out.printf("Returned ciphertext size is %d bytes with algorithm \"%s\"%n",
+        encryptionResult.getCipherText().length, encryptionResult.getAlgorithm()));
 ```
 
 ### Decrypt asynchronously
 Decrypt encrypted content by calling `decrypt`.
 
-```java
+```java readme-sample-decryptAsync
 byte[] plaintext = new byte[100];
-new Random(0x1234567L).nextBytes(plaintext);
+new SecureRandom(SEED).nextBytes(plaintext);
 
 // Let's encrypt a simple plain text of size 100 bytes.
 cryptoAsyncClient.encrypt(EncryptionAlgorithm.RSA_OAEP, plaintext)
-    .subscribe(encryptionResult -> {
+    .flatMap(encryptionResult -> {
         System.out.printf("Returned ciphertext size is %d bytes with algorithm \"%s\"%n",
             encryptionResult.getCipherText().length, encryptionResult.getAlgorithm());
         //Let's decrypt the encrypted response.
-        cryptoAsyncClient.decrypt(EncryptionAlgorithm.RSA_OAEP, encryptionResult.getCipherText())
-            .subscribe(decryptionResult ->
-                System.out.printf("Returned plaintext size is %d bytes%n", decryptionResult.getPlainText().length));
-    });
+        return cryptoAsyncClient.decrypt(EncryptionAlgorithm.RSA_OAEP, encryptionResult.getCipherText());
+    }).subscribe(decryptionResult ->
+        System.out.printf("Returned plaintext size is %d bytes%n", decryptionResult.getPlainText().length));
 ```
 
 ## Troubleshooting
 ### General
 Azure Key Vault Key clients raise exceptions. For example, if you try to retrieve a key after it is deleted a `404` error is returned, indicating the resource was not found. In the following snippet, the error is handled gracefully by catching the exception and displaying additional information about the error.
 
-```java
+```java readme-sample-troubleshooting
 try {
-    keyClient.getKey("<deleted-key-name>")
+    keyClient.getKey("<deleted-key-name>");
 } catch (ResourceNotFoundException e) {
     System.out.println(e.getMessage());
 }
diff --git a/sdk/keyvault/azure-security-keyvault-keys/pom.xml b/sdk/keyvault/azure-security-keyvault-keys/pom.xml
index 7ba4be3c105da..3a5b5b27d746b 100644
--- a/sdk/keyvault/azure-security-keyvault-keys/pom.xml
+++ b/sdk/keyvault/azure-security-keyvault-keys/pom.xml
@@ -55,6 +55,9 @@
       --add-opens com.azure.security.keyvault.keys/com.azure.security.keyvault.keys.cryptography=ALL-UNNAMED
       --add-opens com.azure.security.keyvault.keys/com.azure.security.keyvault.keys.models=ALL-UNNAMED
     </javaModulesSurefireArgLine>
+    <codesnippet.skip>false</codesnippet.skip>
+    <javadocDoclet></javadocDoclet>
+    <javadocDocletOptions></javadocDocletOptions>
   </properties>
 
   <dependencies>
diff --git a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyAsyncClient.java b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyAsyncClient.java
index 3b870256af332..adae1c1023132 100644
--- a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyAsyncClient.java
+++ b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyAsyncClient.java
@@ -75,7 +75,14 @@
  * soft-delete enabled Azure Key Vault.
  *
  * <p><strong>Samples to construct the async client</strong></p>
- * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.instantiation -->
+ * <pre>
+ * KeyAsyncClient keyAsyncClient = new KeyClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.instantiation -->
  *
  * @see KeyClientBuilder
  * @see PagedFlux
@@ -228,7 +235,15 @@ String generateKeyId(String keyName, String keyVersion) {
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a new {@link KeyVaultKey EC key}. Subscribes to the call asynchronously and prints out the newly
      * {@link KeyVaultKey created key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.createKey#String-KeyType}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.createKey#String-KeyType -->
+     * <pre>
+     * keyAsyncClient.createKey&#40;&quot;keyName&quot;, KeyType.EC&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;key -&gt;
+     *         System.out.printf&#40;&quot;Created key with name: %s and id: %s %n&quot;, key.getName&#40;&#41;,
+     *             key.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.createKey#String-KeyType -->
      *
      * @param name The name of the {@link KeyVaultKey key} being created.
      * @param keyType The type of {@link KeyVaultKey key} to create. For valid values, see {@link KeyType KeyType}.
@@ -262,7 +277,19 @@ public Mono<KeyVaultKey> createKey(String name, KeyType keyType) {
      * <p>Creates a new {@link KeyVaultKey EC key}. Subscribes to the call asynchronously and prints out the newly
      * {@link KeyVaultKey created key} details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.createKeyWithResponse#CreateKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.createKeyWithResponse#CreateKeyOptions -->
+     * <pre>
+     * CreateKeyOptions createKeyOptions = new CreateKeyOptions&#40;&quot;keyName&quot;, KeyType.RSA&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     *
+     * keyAsyncClient.createKeyWithResponse&#40;createKeyOptions&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;createKeyResponse -&gt;
+     *         System.out.printf&#40;&quot;Created key with name: %s and: id %s%n&quot;, createKeyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *             createKeyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.createKeyWithResponse#CreateKeyOptions -->
      *
      * @param createKeyOptions The {@link CreateKeyOptions options object} containing information about the
      * {@link KeyVaultKey key} being created.
@@ -312,7 +339,19 @@ Mono<Response<KeyVaultKey>> createKeyWithResponse(String name, KeyType keyType,
      * <p>Creates a new {@link KeyVaultKey RSA key} which activates in one day and expires in one year. Subscribes to
      * the call asynchronously and prints out the newly {@link KeyVaultKey created key} details when a response has been
      * received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.createKey#CreateKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.createKey#CreateKeyOptions -->
+     * <pre>
+     * CreateKeyOptions createKeyOptions = new CreateKeyOptions&#40;&quot;keyName&quot;, KeyType.RSA&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     *
+     * keyAsyncClient.createKey&#40;createKeyOptions&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;key -&gt;
+     *         System.out.printf&#40;&quot;Created key with name: %s and id: %s %n&quot;, key.getName&#40;&#41;,
+     *             key.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.createKey#CreateKeyOptions -->
      *
      * @param createKeyOptions The {@link CreateKeyOptions options object} containing information about the
      * {@link KeyVaultKey key} being created.
@@ -370,7 +409,20 @@ Mono<Response<KeyVaultKey>> createKeyWithResponse(CreateKeyOptions createKeyOpti
      * <p>Creates a new {@link KeyVaultKey RSA key} with size 2048 which activates in one day and expires in one year.
      * Subscribes to the call asynchronously and prints out the newly {@link KeyVaultKey created key} details when a
      * response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.createRsaKey#CreateRsaKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.createRsaKey#CreateRsaKeyOptions -->
+     * <pre>
+     * CreateRsaKeyOptions createRsaKeyOptions = new CreateRsaKeyOptions&#40;&quot;keyName&quot;&#41;
+     *     .setKeySize&#40;2048&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     *
+     * keyAsyncClient.createRsaKey&#40;createRsaKeyOptions&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;rsaKey -&gt;
+     *         System.out.printf&#40;&quot;Created key with name: %s and id: %s %n&quot;, rsaKey.getName&#40;&#41;,
+     *             rsaKey.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.createRsaKey#CreateRsaKeyOptions -->
      *
      * @param createRsaKeyOptions The {@link CreateRsaKeyOptions options object} containing information about the
      * {@link KeyVaultKey RSA key} being created.
@@ -409,7 +461,20 @@ public Mono<KeyVaultKey> createRsaKey(CreateRsaKeyOptions createRsaKeyOptions) {
      * <p>Creates a new {@link KeyVaultKey RSA key} with size 2048 which activates in one day and expires in one year.
      * Subscribes to the call asynchronously and prints out the newly {@link KeyVaultKey created key} details when a
      * response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.createRsaKeyWithResponse#CreateRsaKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.createRsaKeyWithResponse#CreateRsaKeyOptions -->
+     * <pre>
+     * CreateRsaKeyOptions createRsaKeyOptions = new CreateRsaKeyOptions&#40;&quot;keyName&quot;&#41;
+     *     .setKeySize&#40;2048&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     *
+     * keyAsyncClient.createRsaKeyWithResponse&#40;createRsaKeyOptions&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;createRsaKeyResponse -&gt;
+     *         System.out.printf&#40;&quot;Created key with name: %s and: id %s%n&quot;, createRsaKeyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *             createRsaKeyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.createRsaKeyWithResponse#CreateRsaKeyOptions -->
      *
      * @param createRsaKeyOptions The {@link CreateRsaKeyOptions options object} containing information about the
      * {@link KeyVaultKey RSA key} being created.
@@ -470,7 +535,20 @@ Mono<Response<KeyVaultKey>> createRsaKeyWithResponse(CreateRsaKeyOptions createR
      * <p>Creates a new {@link KeyVaultKey EC key} with a {@link KeyCurveName#P_384 P-384} web key curve. The key
      * activates in one day and expires in one year. Subscribes to the call asynchronously and prints out the newly
      * {@link KeyVaultKey created key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.createEcKey#CreateEcKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.createEcKey#CreateEcKeyOptions -->
+     * <pre>
+     * CreateEcKeyOptions createEcKeyOptions = new CreateEcKeyOptions&#40;&quot;keyName&quot;&#41;
+     *     .setCurveName&#40;KeyCurveName.P_384&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     *
+     * keyAsyncClient.createEcKey&#40;createEcKeyOptions&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;ecKey -&gt;
+     *         System.out.printf&#40;&quot;Created key with name: %s and id: %s %n&quot;, ecKey.getName&#40;&#41;,
+     *             ecKey.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.createEcKey#CreateEcKeyOptions -->
      *
      * @param createEcKeyOptions The {@link CreateEcKeyOptions options object} containing information about the
      * {@link KeyVaultKey EC key} being created.
@@ -511,7 +589,20 @@ public Mono<KeyVaultKey> createEcKey(CreateEcKeyOptions createEcKeyOptions) {
      * <p>Creates a new {@link KeyVaultKey EC key} with a {@link KeyCurveName#P_384 P-384} web key curve. The key
      * activates in one day and expires in one year. Subscribes to the call asynchronously and prints out the newly
      * {@link KeyVaultKey created key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.createEcKeyWithResponse#CreateEcKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.createEcKeyWithResponse#CreateEcKeyOptions -->
+     * <pre>
+     * CreateEcKeyOptions createEcKeyOptions = new CreateEcKeyOptions&#40;&quot;keyName&quot;&#41;
+     *     .setCurveName&#40;KeyCurveName.P_384&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     *
+     * keyAsyncClient.createEcKeyWithResponse&#40;createEcKeyOptions&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;createEcKeyResponse -&gt;
+     *         System.out.printf&#40;&quot;Created key with name: %s and: id %s%n&quot;, createEcKeyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *             createEcKeyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.createEcKeyWithResponse#CreateEcKeyOptions -->
      *
      * @param createEcKeyOptions The {@link CreateEcKeyOptions options object} containing information about the
      * {@link KeyVaultKey EC key} being created.
@@ -568,7 +659,19 @@ Mono<Response<KeyVaultKey>> createEcKeyWithResponse(CreateEcKeyOptions createEcK
      * <p>Creates a new {@link KeyVaultKey symmetric key}. The {@link KeyVaultKey key} activates in one day and expires
      * in one year. Subscribes to the call asynchronously and prints out the details of the newly
      * {@link KeyVaultKey created key} when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.createOctKey#CreateOctKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.createOctKey#CreateOctKeyOptions -->
+     * <pre>
+     * CreateOctKeyOptions createOctKeyOptions = new CreateOctKeyOptions&#40;&quot;keyName&quot;&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     *
+     * keyAsyncClient.createOctKey&#40;createOctKeyOptions&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;octKey -&gt;
+     *         System.out.printf&#40;&quot;Created key with name: %s and id: %s %n&quot;, octKey.getName&#40;&#41;,
+     *             octKey.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.createOctKey#CreateOctKeyOptions -->
      *
      * @param createOctKeyOptions The {@link CreateOctKeyOptions options object} containing information about the
      * {@link KeyVaultKey symmetric key} being created.
@@ -605,7 +708,19 @@ public Mono<KeyVaultKey> createOctKey(CreateOctKeyOptions createOctKeyOptions) {
      * <p>Creates a new {@link KeyVaultKey symmetric key}. The {@link KeyVaultKey key} activates in one day and expires
      * in one year. Subscribes to the call asynchronously and prints out the details of the newly
      * {@link KeyVaultKey created key} when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.createOctKeyWithResponse#CreateOctKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.createOctKeyWithResponse#CreateOctKeyOptions -->
+     * <pre>
+     * CreateOctKeyOptions createOctKeyOptions = new CreateOctKeyOptions&#40;&quot;keyName&quot;&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     *
+     * keyAsyncClient.createOctKeyWithResponse&#40;createOctKeyOptions&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;createOctKeyResponse -&gt;
+     *         System.out.printf&#40;&quot;Created key with name: %s and: id %s%n&quot;, createOctKeyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *             createOctKeyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.createOctKeyWithResponse#CreateOctKeyOptions -->
      *
      * @param createOctKeyOptions The {@link CreateOctKeyOptions options object} containing information about the
      * {@link KeyVaultKey symmetric key} being created.
@@ -657,7 +772,14 @@ Mono<Response<KeyVaultKey>> createOctKeyWithResponse(CreateOctKeyOptions createO
      * <p><strong>Code Samples</strong></p>
      * <p>Imports a new {@link KeyVaultKey key} into key vault. Subscribes to the call asynchronously and prints out the
      * newly {@link KeyVaultKey imported key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.importKey#String-JsonWebKey}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.importKey#String-JsonWebKey -->
+     * <pre>
+     * keyAsyncClient.importKey&#40;&quot;keyName&quot;, jsonWebKeyToImport&#41;
+     *     .subscribe&#40;keyVaultKey -&gt;
+     *         System.out.printf&#40;&quot;Imported key with name: %s and id: %s%n&quot;, keyVaultKey.getName&#40;&#41;,
+     *             keyVaultKey.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.importKey#String-JsonWebKey -->
      *
      * @param name The name for the imported key.
      * @param keyMaterial The Json web key being imported.
@@ -702,7 +824,15 @@ Mono<Response<KeyVaultKey>> importKeyWithResponse(String name, JsonWebKey keyMat
      * <p><strong>Code Samples</strong></p>
      * <p>Imports a new {@link KeyVaultKey key} into key vault. Subscribes to the call asynchronously and prints out the
      * newly {@link KeyVaultKey imported key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.importKey#ImportKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.importKey#ImportKeyOptions -->
+     * <pre>
+     * ImportKeyOptions options = new ImportKeyOptions&#40;&quot;keyName&quot;, jsonWebKeyToImport&#41;
+     *     .setHardwareProtected&#40;false&#41;;
+     *
+     * keyAsyncClient.importKey&#40;options&#41;.subscribe&#40;keyVaultKey -&gt;
+     *     System.out.printf&#40;&quot;Imported key with name: %s and id: %s%n&quot;, keyVaultKey.getName&#40;&#41;, keyVaultKey.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.importKey#ImportKeyOptions -->
      *
      * @param importKeyOptions The {@link ImportKeyOptions options object} containing information about the
      * {@link JsonWebKey} being imported.
@@ -738,7 +868,16 @@ public Mono<KeyVaultKey> importKey(ImportKeyOptions importKeyOptions) {
      * <p><strong>Code Samples</strong></p>
      * <p>Imports a new {@link KeyVaultKey key} into key vault. Subscribes to the call asynchronously and prints out the
      * newly {@link KeyVaultKey imported key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.importKeyWithResponse#ImportKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.importKeyWithResponse#ImportKeyOptions -->
+     * <pre>
+     * ImportKeyOptions importKeyOptions = new ImportKeyOptions&#40;&quot;keyName&quot;, jsonWebKeyToImport&#41;
+     *     .setHardwareProtected&#40;false&#41;;
+     *
+     * keyAsyncClient.importKeyWithResponse&#40;importKeyOptions&#41;.subscribe&#40;response -&gt;
+     *     System.out.printf&#40;&quot;Imported key with name: %s and id: %s%n&quot;, response.getValue&#40;&#41;.getName&#40;&#41;,
+     *         response.getValue&#40;&#41;.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.importKeyWithResponse#ImportKeyOptions -->
      *
      * @param importKeyOptions The {@link ImportKeyOptions options object} containing information about the
      * {@link JsonWebKey} being imported.
@@ -783,7 +922,17 @@ Mono<Response<KeyVaultKey>> importKeyWithResponse(ImportKeyOptions importKeyOpti
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a specific version of the {@link KeyVaultKey key} in the key vault. Subscribes to the call asynchronously
      * and prints out the {@link KeyVaultKey retrieved key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.getKey#String-String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.getKey#String-String -->
+     * <pre>
+     * String keyVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     *
+     * keyAsyncClient.getKey&#40;&quot;keyName&quot;, keyVersion&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;key -&gt;
+     *         System.out.printf&#40;&quot;Created key with name: %s and: id %s%n&quot;, key.getName&#40;&#41;,
+     *             key.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.getKey#String-String -->
      *
      * @param name The name of the {@link KeyVaultKey key}, cannot be {@code null}.
      * @param version The version of the key to retrieve. If this is an empty String or null, this call is
@@ -812,7 +961,17 @@ public Mono<KeyVaultKey> getKey(String name, String version) {
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a specific version of the {@link KeyVaultKey key} in the key vault. Subscribes to the call asynchronously
      * and prints out the {@link KeyVaultKey retrieved key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.getKeyWithResponse#String-String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.getKeyWithResponse#String-String -->
+     * <pre>
+     * String keyVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     *
+     * keyAsyncClient.getKeyWithResponse&#40;&quot;keyName&quot;, keyVersion&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;getKeyResponse -&gt;
+     *         System.out.printf&#40;&quot;Created key with name: %s and: id %s%n&quot;,
+     *             getKeyResponse.getValue&#40;&#41;.getName&#40;&#41;, getKeyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.getKeyWithResponse#String-String -->
      *
      * @param name The name of the {@link KeyVaultKey key}, cannot be {@code null}.
      * @param version The version of the key to retrieve. If this is an empty String or null, this call is
@@ -851,7 +1010,15 @@ Mono<Response<KeyVaultKey>> getKeyWithResponse(String name, String version, Cont
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a specific version of the {@link KeyVaultKey key} in the key vault. Subscribes to the call asynchronously
      * and prints out the {@link KeyVaultKey retrieved key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.getKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.getKey#String -->
+     * <pre>
+     * keyAsyncClient.getKey&#40;&quot;keyName&quot;&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;key -&gt;
+     *         System.out.printf&#40;&quot;Created key with name: %s and: id %s%n&quot;, key.getName&#40;&#41;,
+     *             key.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.getKey#String -->
      *
      * @param name The name of the {@link KeyVaultKey key}, cannot be {@code null}.
      *
@@ -884,7 +1051,21 @@ public Mono<KeyVaultKey> getKey(String name) {
      * <p>Gets latest version of the {@link KeyVaultKey key}, changes its notBefore time and then updates it in the
      * Azure Key Vault. Subscribes to the call asynchronously and prints out the {@link KeyVaultKey returned key}
      * details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.updateKeyPropertiesWithResponse#KeyProperties-KeyOperation}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.updateKeyPropertiesWithResponse#KeyProperties-KeyOperation -->
+     * <pre>
+     * keyAsyncClient.getKey&#40;&quot;keyName&quot;&#41;
+     *     .subscribe&#40;getKeyResponse -&gt; &#123;
+     *         &#47;&#47;Update the not before time of the key.
+     *         getKeyResponse.getProperties&#40;&#41;.setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;50&#41;&#41;;
+     *         keyAsyncClient.updateKeyPropertiesWithResponse&#40;getKeyResponse.getProperties&#40;&#41;, KeyOperation.ENCRYPT,
+     *                 KeyOperation.DECRYPT&#41;
+     *             .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *             .subscribe&#40;updateKeyResponse -&gt;
+     *                 System.out.printf&#40;&quot;Updated key's &#92;&quot;not before time&#92;&quot;: %s%n&quot;,
+     *                     updateKeyResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getNotBefore&#40;&#41;.toString&#40;&#41;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.updateKeyPropertiesWithResponse#KeyProperties-KeyOperation -->
      *
      * @param keyProperties The {@link KeyProperties key properties} object with updated properties.
      * @param keyOperations The updated {@link KeyOperation key operations} to associate with the key.
@@ -920,7 +1101,21 @@ public Mono<Response<KeyVaultKey>> updateKeyPropertiesWithResponse(KeyProperties
      * <p>Gets latest version of the {@link KeyVaultKey key}, changes its notBefore time and then updates it in the
      * Azure Key Vault. Subscribes to the call asynchronously and prints out the {@link KeyVaultKey returned key}
      * details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.updateKeyProperties#KeyProperties-KeyOperation}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.updateKeyProperties#KeyProperties-KeyOperation -->
+     * <pre>
+     * keyAsyncClient.getKey&#40;&quot;keyName&quot;&#41;
+     *     .subscribe&#40;key -&gt; &#123;
+     *         &#47;&#47;Update the not before time of the key.
+     *         key.getProperties&#40;&#41;.setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;50&#41;&#41;;
+     *         keyAsyncClient.updateKeyProperties&#40;key.getProperties&#40;&#41;, KeyOperation.ENCRYPT,
+     *                 KeyOperation.DECRYPT&#41;
+     *             .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *             .subscribe&#40;updatedKey -&gt;
+     *                 System.out.printf&#40;&quot;Updated key's &#92;&quot;not before time&#92;&quot;: %s%n&quot;,
+     *                     updatedKey.getProperties&#40;&#41;.getNotBefore&#40;&#41;.toString&#40;&#41;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.updateKeyProperties#KeyProperties-KeyOperation -->
      *
      * @param keyProperties The {@link KeyProperties key properties} object with updated properties.
      * @param keyOperations The updated {@link KeyOperation key operations} to associate with the key.
@@ -976,7 +1171,16 @@ Mono<Response<KeyVaultKey>> updateKeyPropertiesWithResponse(KeyProperties keyPro
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes the {@link KeyVaultKey key} in the Azure Key Vault. Subscribes to the call asynchronously and prints
      * out the {@link KeyVaultKey deleted key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.deleteKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.deleteKey#String -->
+     * <pre>
+     * keyAsyncClient.beginDeleteKey&#40;&quot;keyName&quot;&#41;
+     *     .subscribe&#40;pollResponse -&gt; &#123;
+     *         System.out.printf&#40;&quot;Deletion status: %s%n&quot;, pollResponse.getStatus&#40;&#41;&#41;;
+     *         System.out.printf&#40;&quot;Key name: %s%n&quot;, pollResponse.getValue&#40;&#41;.getName&#40;&#41;&#41;;
+     *         System.out.printf&#40;&quot;Key delete date: %s%n&quot;, pollResponse.getValue&#40;&#41;.getDeletedOn&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.deleteKey#String -->
      *
      * @param name The name of the {@link KeyVaultKey key} to be deleted.
      *
@@ -1038,7 +1242,14 @@ Mono<Response<DeletedKey>> deleteKeyWithResponse(String name, Context context) {
      * <p><strong>Code Samples</strong></p>
      * <p> Gets the {@link KeyVaultKey deleted key} from the key vault enabled for soft-delete. Subscribes to the call
      * asynchronously and prints out the {@link KeyVaultKey deleted key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.getDeletedKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.getDeletedKey#String -->
+     * <pre>
+     * keyAsyncClient.getDeletedKey&#40;&quot;keyName&quot;&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;deletedKey -&gt;
+     *         System.out.printf&#40;&quot;Deleted key's recovery id:%s%n&quot;, deletedKey.getRecoveryId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.getDeletedKey#String -->
      *
      * @param name The name of the deleted {@link KeyVaultKey key}.
      *
@@ -1063,7 +1274,14 @@ public Mono<DeletedKey> getDeletedKey(String name) {
      * <p><strong>Code Samples</strong></p>
      * <p> Gets the {@link KeyVaultKey deleted key} from the key vault enabled for soft-delete. Subscribes to the call
      * asynchronously and prints out the {@link KeyVaultKey deleted key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.getDeletedKeyWithResponse#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.getDeletedKeyWithResponse#String -->
+     * <pre>
+     * keyAsyncClient.getDeletedKeyWithResponse&#40;&quot;keyName&quot;&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;getDeletedKeyResponse -&gt;
+     *         System.out.printf&#40;&quot;Deleted key's recovery id: %s%n&quot;, getDeletedKeyResponse.getValue&#40;&#41;.getRecoveryId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.getDeletedKeyWithResponse#String -->
      *
      * @param name The name of the deleted {@link KeyVaultKey key}.
      *
@@ -1099,7 +1317,13 @@ Mono<Response<DeletedKey>> getDeletedKeyWithResponse(String name, Context contex
      * <p><strong>Code Samples</strong></p>
      * <p>Purges the {@link KeyVaultKey deleted key} from the key vault enabled for soft-delete. Subscribes to the call
      * asynchronously and prints out the status code from the server response when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.purgeDeletedKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.purgeDeletedKey#String -->
+     * <pre>
+     * keyAsyncClient.purgeDeletedKey&#40;&quot;deletedKeyName&quot;&#41;
+     *     .subscribe&#40;ignored -&gt;
+     *         System.out.println&#40;&quot;Successfully purged deleted key&quot;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.purgeDeletedKey#String -->
      *
      * @param name The name of the {@link KeyVaultKey deleted key}.
      *
@@ -1125,7 +1349,14 @@ public Mono<Void> purgeDeletedKey(String name) {
      * <p><strong>Code Samples</strong></p>
      * <p>Purges the {@link KeyVaultKey deleted key} from the key vault enabled for soft-delete. Subscribes to the call
      * asynchronously and prints out the status code from the server response when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.purgeDeletedKeyWithResponse#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.purgeDeletedKeyWithResponse#String -->
+     * <pre>
+     * keyAsyncClient.purgeDeletedKeyWithResponse&#40;&quot;deletedKeyName&quot;&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;purgeDeletedKeyResponse -&gt;
+     *         System.out.printf&#40;&quot;Purge response status code: %d%n&quot;, purgeDeletedKeyResponse.getStatusCode&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.purgeDeletedKeyWithResponse#String -->
      *
      * @param name The name of the {@link KeyVaultKey deleted key}.
      *
@@ -1161,7 +1392,16 @@ Mono<Response<Void>> purgeDeletedKeyWithResponse(String name, Context context) {
      * <p><strong>Code Samples</strong></p>
      * <p>Recovers the {@link KeyVaultKey deleted key} from the key vault enabled for soft-delete. Subscribes to the
      * call asynchronously and prints out the recovered key details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.recoverDeletedKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.recoverDeletedKey#String -->
+     * <pre>
+     * keyAsyncClient.beginRecoverDeletedKey&#40;&quot;deletedKeyName&quot;&#41;
+     *     .subscribe&#40;pollResponse -&gt; &#123;
+     *         System.out.printf&#40;&quot;Recovery status: %s%n&quot;, pollResponse.getStatus&#40;&#41;&#41;;
+     *         System.out.printf&#40;&quot;Key name: %s%n&quot;, pollResponse.getValue&#40;&#41;.getName&#40;&#41;&#41;;
+     *         System.out.printf&#40;&quot;Key type: %s%n&quot;, pollResponse.getValue&#40;&#41;.getKeyType&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.recoverDeletedKey#String -->
      *
      * @param name The name of the {@link KeyVaultKey deleted key} to be recovered.
      *
@@ -1230,7 +1470,14 @@ Mono<Response<KeyVaultKey>> recoverDeletedKeyWithResponse(String name, Context c
      * <p><strong>Code Samples</strong></p>
      * <p>Backs up the {@link KeyVaultKey key} from the key vault. Subscribes to the call asynchronously and prints out
      * the length of the key's backup byte array returned in the response.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.backupKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.backupKey#String -->
+     * <pre>
+     * keyAsyncClient.backupKey&#40;&quot;keyName&quot;&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;bytes -&gt;
+     *         System.out.printf&#40;&quot;Key backup byte array length: %s%n&quot;, bytes.length&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.backupKey#String -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      *
@@ -1264,7 +1511,14 @@ public Mono<byte[]> backupKey(String name) {
      * <p><strong>Code Samples</strong></p>
      * <p>Backs up the {@link KeyVaultKey key} from the key vault. Subscribes to the call asynchronously and prints out
      * the length of the key's backup byte array returned in the response.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.backupKeyWithResponse#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.backupKeyWithResponse#String -->
+     * <pre>
+     * keyAsyncClient.backupKeyWithResponse&#40;&quot;keyName&quot;&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;backupKeyResponse -&gt;
+     *         System.out.printf&#40;&quot;Key backup byte array length: %s%n&quot;, backupKeyResponse.getValue&#40;&#41;.length&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.backupKeyWithResponse#String -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      *
@@ -1312,7 +1566,15 @@ Mono<Response<byte[]>> backupKeyWithResponse(String name, Context context) {
      * <p>Restores the {@link KeyVaultKey key} in the key vault from its backup. Subscribes to the call asynchronously
      * and prints out the restored key details when a response has been received.</p>
      * //Pass the Key Backup Byte array to the restore operation.
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.restoreKeyBackup#byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.restoreKeyBackup#byte -->
+     * <pre>
+     * keyAsyncClient.restoreKeyBackup&#40;keyBackupByteArray&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;restoreKeyResponse -&gt;
+     *         System.out.printf&#40;&quot;Restored key with name: %s and: id %s%n&quot;, restoreKeyResponse.getName&#40;&#41;,
+     *             restoreKeyResponse.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.restoreKeyBackup#byte -->
      *
      * @param backup The backup blob associated with the {@link KeyVaultKey key}.
      *
@@ -1346,7 +1608,15 @@ public Mono<KeyVaultKey> restoreKeyBackup(byte[] backup) {
      * <p>Restores the {@link KeyVaultKey key} in the key vault from its backup. Subscribes to the call asynchronously
      * and prints out the restored key details when a response has been received.</p>
      * //Pass the Key Backup Byte array to the restore operation.
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.restoreKeyBackupWithResponse#byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.restoreKeyBackupWithResponse#byte -->
+     * <pre>
+     * keyAsyncClient.restoreKeyBackupWithResponse&#40;keyBackupByteArray&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;restoreKeyBackupResponse -&gt;
+     *         System.out.printf&#40;&quot;Restored key with name: %s and: id %s%n&quot;,
+     *             restoreKeyBackupResponse.getValue&#40;&#41;.getName&#40;&#41;, restoreKeyBackupResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.restoreKeyBackupWithResponse#byte -->
      *
      * @param backup The backup blob associated with the {@link KeyVaultKey key}.
      *
@@ -1386,7 +1656,16 @@ Mono<Response<KeyVaultKey>> restoreKeyBackupWithResponse(byte[] backup, Context
      * {@link Flux} containing {@link KeyProperties key properties} to {@link Flux} containing
      * {@link KeyVaultKey key} using {@link KeyAsyncClient#getKey(String, String)} within
      * {@link Flux#flatMap(Function)}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.listPropertiesOfKeys}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.listPropertiesOfKeys -->
+     * <pre>
+     * keyAsyncClient.listPropertiesOfKeys&#40;&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .flatMap&#40;keyProperties -&gt; keyAsyncClient.getKey&#40;keyProperties.getName&#40;&#41;, keyProperties.getVersion&#40;&#41;&#41;&#41;
+     *     .subscribe&#40;key -&gt; System.out.printf&#40;&quot;Retrieved key with name: %s and type: %s%n&quot;,
+     *         key.getName&#40;&#41;,
+     *         key.getKeyType&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.listPropertiesOfKeys -->
      *
      * @return A {@link PagedFlux} containing {@link KeyProperties key} of all the keys in the vault.
      */
@@ -1456,7 +1735,14 @@ private Mono<PagedResponse<KeyProperties>> listKeysFirstPage(Context context) {
      * <p><strong>Code Samples</strong></p>
      * <p>Lists the {@link DeletedKey deleted keys} in the key vault. Subscribes to the call asynchronously and prints
      * out the recovery id of each {@link DeletedKey deleted key} when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.listDeletedKeys}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.listDeletedKeys -->
+     * <pre>
+     * keyAsyncClient.listDeletedKeys&#40;&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;deletedKey -&gt;
+     *         System.out.printf&#40;&quot;Deleted key's recovery id:%s%n&quot;, deletedKey.getRecoveryId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.listDeletedKeys -->
      *
      * @return A {@link PagedFlux} containing all of the {@link DeletedKey deleted keys} in the vault.
      */
@@ -1527,7 +1813,16 @@ private Mono<PagedResponse<DeletedKey>> listDeletedKeysFirstPage(Context context
      * {@link Flux} containing {@link KeyProperties key properties} to {@link Flux} containing
      * {@link KeyVaultKey key } using {@link KeyAsyncClient#getKey(String, String)} within
      * {@link Flux#flatMap(Function)}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.listKeyVersions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.listKeyVersions -->
+     * <pre>
+     * keyAsyncClient.listPropertiesOfKeyVersions&#40;&quot;keyName&quot;&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .flatMap&#40;keyProperties -&gt; keyAsyncClient.getKey&#40;keyProperties.getName&#40;&#41;, keyProperties.getVersion&#40;&#41;&#41;&#41;
+     *     .subscribe&#40;key -&gt;
+     *         System.out.printf&#40;&quot;Retrieved key version: %s with name: %s and type: %s%n&quot;,
+     *             key.getProperties&#40;&#41;.getVersion&#40;&#41;, key.getName&#40;&#41;, key.getKeyType&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.listKeyVersions -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      *
@@ -1596,7 +1891,14 @@ private Mono<PagedResponse<KeyProperties>> listKeyVersionsNextPage(String contin
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a number of bytes containing random values from a Managed HSM. Prints out the retrieved bytes in
      * base64Url format.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.getRandomBytes#int}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.getRandomBytes#int -->
+     * <pre>
+     * int amount = 16;
+     * keyAsyncClient.getRandomBytes&#40;amount&#41;
+     *     .subscribe&#40;randomBytes -&gt;
+     *         System.out.printf&#40;&quot;Retrieved %d random bytes: %s%n&quot;, amount, Arrays.toString&#40;randomBytes.getBytes&#40;&#41;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.getRandomBytes#int -->
      *
      * @param count The requested number of random bytes.
      *
@@ -1618,7 +1920,14 @@ public Mono<RandomBytes> getRandomBytes(int count) {
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a number of bytes containing random values from a Managed HSM. Prints out the
      * {@link Response HTTP Response} details and the retrieved bytes in base64Url format.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.getRandomBytesWithResponse#int}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.getRandomBytesWithResponse#int -->
+     * <pre>
+     * int amountOfBytes = 16;
+     * keyAsyncClient.getRandomBytesWithResponse&#40;amountOfBytes&#41;.subscribe&#40;response -&gt;
+     *     System.out.printf&#40;&quot;Response received successfully with status code: %d. Retrieved %d random bytes: %s%n&quot;,
+     *         response.getStatusCode&#40;&#41;, amountOfBytes, Arrays.toString&#40;response.getValue&#40;&#41;.getBytes&#40;&#41;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.getRandomBytesWithResponse#int -->
      *
      * @param count The requested number of random bytes.
      *
@@ -1657,7 +1966,14 @@ Mono<Response<RandomBytes>> getRandomBytesWithResponse(int count, Context contex
      * <p><strong>Code Samples</strong></p>
      * <p>Releases a {@link KeyVaultKey key}. Subscribes to the call asynchronously and prints out the signed object
      * that contains the {@link KeyVaultKey released key} when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.releaseKey#String-String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.releaseKey#String-String -->
+     * <pre>
+     * String target = &quot;someAttestationToken&quot;;
+     * ReleaseKeyResult releaseKeyResult = keyClient.releaseKey&#40;&quot;keyName&quot;, target&#41;;
+     *
+     * System.out.printf&#40;&quot;Signed object containing released key: %s%n&quot;, releaseKeyResult&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.releaseKey#String-String -->
      *
      * @param name The name of the {@link KeyVaultKey key} to release.
      * @param target The attestation assertion for the target of the {@link KeyVaultKey key} release.
@@ -1685,7 +2001,16 @@ public Mono<ReleaseKeyResult> releaseKey(String name, String target) {
      * <p><strong>Code Samples</strong></p>
      * <p>Releases a {@link KeyVaultKey key}. Subscribes to the call asynchronously and prints out the signed object
      * that contains the {@link KeyVaultKey released key} when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.releaseKey#String-String-String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.releaseKey#String-String-String -->
+     * <pre>
+     * String myKeyVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     * String myTarget = &quot;someAttestationToken&quot;;
+     *
+     * keyAsyncClient.releaseKey&#40;&quot;keyName&quot;, myKeyVersion, myTarget&#41;
+     *     .subscribe&#40;releaseKeyResult -&gt;
+     *         System.out.printf&#40;&quot;Signed object containing released key: %s%n&quot;, releaseKeyResult.getValue&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.releaseKey#String-String-String -->
      *
      * @param name The name of the {@link KeyVaultKey key} to release.
      * @param version The version of the key to retrieve. If this is empty or {@code null}, this call is equivalent to
@@ -1716,7 +2041,21 @@ public Mono<ReleaseKeyResult> releaseKey(String name, String version, String tar
      * <p>Releases a {@link KeyVaultKey key}. Subscribes to the call asynchronously and prints out the
      * {@link Response HTTP Response} details and the signed object that contains the {@link KeyVaultKey released key}
      * when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.releaseKeyWithResponse#String-String-String-ReleaseKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.releaseKeyWithResponse#String-String-String-ReleaseKeyOptions -->
+     * <pre>
+     * String releaseKeyVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     * String releaseTarget = &quot;someAttestationToken&quot;;
+     * ReleaseKeyOptions releaseKeyOptions = new ReleaseKeyOptions&#40;&#41;
+     *     .setAlgorithm&#40;KeyExportEncryptionAlgorithm.RSA_AES_KEY_WRAP_256&#41;
+     *     .setNonce&#40;&quot;someNonce&quot;&#41;;
+     *
+     * keyAsyncClient.releaseKeyWithResponse&#40;&quot;keyName&quot;, releaseKeyVersion, releaseTarget, releaseKeyOptions&#41;
+     *     .subscribe&#40;releaseKeyResponse -&gt;
+     *         System.out.printf&#40;&quot;Response received successfully with status code: %d. Signed object containing&quot;
+     *                 + &quot;released key: %s%n&quot;, releaseKeyResponse.getStatusCode&#40;&#41;,
+     *             releaseKeyResponse.getValue&#40;&#41;.getValue&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.releaseKeyWithResponse#String-String-String-ReleaseKeyOptions -->
      *
      * @param name The name of the key to release.
      * @param version The version of the key to retrieve. If this is empty or {@code null}, this call is equivalent to
@@ -1774,7 +2113,14 @@ Mono<Response<ReleaseKeyResult>> releaseKeyWithResponse(String name, String vers
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Rotates a {@link KeyVaultKey key}. Prints out {@link KeyVaultKey rotated key} details.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.rotateKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.rotateKey#String -->
+     * <pre>
+     * keyAsyncClient.rotateKey&#40;&quot;keyName&quot;&#41;
+     *     .subscribe&#40;key -&gt;
+     *         System.out.printf&#40;&quot;Rotated key with name: %s and version:%s%n&quot;, key.getName&#40;&#41;,
+     *             key.getProperties&#40;&#41;.getVersion&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.rotateKey#String -->
      *
      * @param name The name of {@link KeyVaultKey key} to be rotated. The system will generate a new version in the
      * specified {@link KeyVaultKey key}.
@@ -1800,7 +2146,15 @@ public Mono<KeyVaultKey> rotateKey(String name) {
      * <p><strong>Code Samples</strong></p>
      * <p>Rotates a {@link KeyVaultKey key}. Subscribes to the call asynchronously and prints out the
      * {@link Response HTTP Response} and {@link KeyVaultKey rotated key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.rotateKeyWithResponse#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.rotateKeyWithResponse#String -->
+     * <pre>
+     * keyAsyncClient.rotateKeyWithResponse&#40;&quot;keyName&quot;&#41;
+     *     .subscribe&#40;rotateKeyResponse -&gt;
+     *         System.out.printf&#40;&quot;Response received successfully with status code: %d. Rotated key with name: %s and&quot;
+     *                 + &quot;version: %s%n&quot;, rotateKeyResponse.getStatusCode&#40;&#41;, rotateKeyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *             rotateKeyResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getVersion&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.rotateKeyWithResponse#String -->
      *
      * @param name The name of {@link KeyVaultKey key} to be rotated. The system will generate a new version in the
      * specified {@link KeyVaultKey key}.
@@ -1844,7 +2198,13 @@ Mono<Response<KeyVaultKey>> rotateKeyWithResponse(String name, Context context)
      * <p>Retrieves the {@link KeyRotationPolicy rotation policy} of a given {@link KeyVaultKey key}. Subscribes to the
      * call asynchronously and prints out the {@link KeyRotationPolicy rotation policy key} details when a response
      * has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.getKeyRotationPolicy#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.getKeyRotationPolicy#String -->
+     * <pre>
+     * keyAsyncClient.getKeyRotationPolicy&#40;&quot;keyName&quot;&#41;
+     *     .subscribe&#40;keyRotationPolicy -&gt;
+     *         System.out.printf&#40;&quot;Retrieved key rotation policy with id: %s%n&quot;, keyRotationPolicy.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.getKeyRotationPolicy#String -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      *
@@ -1870,7 +2230,15 @@ public Mono<KeyRotationPolicy> getKeyRotationPolicy(String name) {
      * <p>Retrieves the {@link KeyRotationPolicy rotation policy} of a given {@link KeyVaultKey key}. Subscribes to the
      * call asynchronously and prints out the {@link Response HTTP Response} and
      * {@link KeyRotationPolicy rotation policy key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.getKeyRotationPolicyWithResponse#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.getKeyRotationPolicyWithResponse#String -->
+     * <pre>
+     * keyAsyncClient.getKeyRotationPolicyWithResponse&#40;&quot;keyName&quot;&#41;
+     *     .subscribe&#40;getKeyRotationPolicyResponse -&gt;
+     *         System.out.printf&#40;&quot;Response received successfully with status code: %d. Retrieved key rotation policy&quot;
+     *             + &quot;with id: %s%n&quot;, getKeyRotationPolicyResponse.getStatusCode&#40;&#41;,
+     *             getKeyRotationPolicyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.getKeyRotationPolicyWithResponse#String -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      *
@@ -1914,7 +2282,26 @@ Mono<Response<KeyRotationPolicy>> getKeyRotationPolicyWithResponse(String name,
      * <p>Updates the {@link KeyRotationPolicy rotation policy} of a given {@link KeyVaultKey key}. Subscribes to the
      * call asynchronously and prints out the {@link KeyRotationPolicy rotation policy key} details when a response
      * has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.updateKeyRotationPolicy#String-KeyRotationPolicyProperties}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.updateKeyRotationPolicy#String-KeyRotationPolicyProperties -->
+     * <pre>
+     * List&lt;KeyRotationLifetimeAction&gt; lifetimeActions = new ArrayList&lt;&gt;&#40;&#41;;
+     * KeyRotationLifetimeAction rotateLifetimeAction = new KeyRotationLifetimeAction&#40;KeyRotationPolicyAction.ROTATE&#41;
+     *     .setTimeAfterCreate&#40;&quot;P90D&quot;&#41;;
+     * KeyRotationLifetimeAction notifyLifetimeAction = new KeyRotationLifetimeAction&#40;KeyRotationPolicyAction.NOTIFY&#41;
+     *     .setTimeBeforeExpiry&#40;&quot;P45D&quot;&#41;;
+     *
+     * lifetimeActions.add&#40;rotateLifetimeAction&#41;;
+     * lifetimeActions.add&#40;notifyLifetimeAction&#41;;
+     *
+     * KeyRotationPolicyProperties policyProperties = new KeyRotationPolicyProperties&#40;&#41;
+     *     .setLifetimeActions&#40;lifetimeActions&#41;
+     *     .setExpiryTime&#40;&quot;P6M&quot;&#41;;
+     *
+     * keyAsyncClient.updateKeyRotationPolicy&#40;&quot;keyName&quot;, policyProperties&#41;
+     *     .subscribe&#40;keyRotationPolicy -&gt;
+     *         System.out.printf&#40;&quot;Updated key rotation policy with id: %s%n&quot;, keyRotationPolicy.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.updateKeyRotationPolicy#String-KeyRotationPolicyProperties -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      * @param keyRotationPolicyProperties The {@link KeyRotationPolicyProperties} for the key.
@@ -1942,7 +2329,28 @@ public Mono<KeyRotationPolicy> updateKeyRotationPolicy(String name,
      * <p>Updates the {@link KeyRotationPolicy rotation policy} of a given {@link KeyVaultKey key}. Subscribes to the
      * call asynchronously and prints out the {@link Response HTTP Response} and
      * {@link KeyRotationPolicy rotation policy key} details when a response has been received.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.updateKeyRotationPolicyWithResponse#String-KeyRotationPolicyProperties}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.updateKeyRotationPolicyWithResponse#String-KeyRotationPolicyProperties -->
+     * <pre>
+     * List&lt;KeyRotationLifetimeAction&gt; myLifetimeActions = new ArrayList&lt;&gt;&#40;&#41;;
+     * KeyRotationLifetimeAction myRotateLifetimeAction = new KeyRotationLifetimeAction&#40;KeyRotationPolicyAction.ROTATE&#41;
+     *     .setTimeAfterCreate&#40;&quot;P90D&quot;&#41;;
+     * KeyRotationLifetimeAction myNotifyLifetimeAction = new KeyRotationLifetimeAction&#40;KeyRotationPolicyAction.NOTIFY&#41;
+     *     .setTimeBeforeExpiry&#40;&quot;P45D&quot;&#41;;
+     *
+     * myLifetimeActions.add&#40;myRotateLifetimeAction&#41;;
+     * myLifetimeActions.add&#40;myNotifyLifetimeAction&#41;;
+     *
+     * KeyRotationPolicyProperties myPolicyProperties = new KeyRotationPolicyProperties&#40;&#41;
+     *     .setLifetimeActions&#40;myLifetimeActions&#41;
+     *     .setExpiryTime&#40;&quot;P6M&quot;&#41;;
+     *
+     * keyAsyncClient.updateKeyRotationPolicyWithResponse&#40;&quot;keyName&quot;, myPolicyProperties&#41;
+     *     .subscribe&#40;updateKeyRotationPolicyResponse -&gt;
+     *         System.out.printf&#40;&quot;Response received successfully with status code: %d. Updated key rotation policy&quot;
+     *             + &quot;with id: %s%n&quot;, updateKeyRotationPolicyResponse.getStatusCode&#40;&#41;,
+     *             updateKeyRotationPolicyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.updateKeyRotationPolicyWithResponse#String-KeyRotationPolicyProperties -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      * @param keyRotationPolicyProperties The {@link KeyRotationPolicyProperties} for the key.
diff --git a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyClient.java b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyClient.java
index aad1ac0c86552..2d855752e8a83 100644
--- a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyClient.java
+++ b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyClient.java
@@ -41,7 +41,14 @@
  * soft-delete enabled Azure Key Vault.
  *
  * <p><strong>Samples to construct the sync client</strong></p>
- * {@codesnippet com.azure.security.keyvault.keys.KeyClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.instantiation -->
+ * <pre>
+ * KeyClient keyClient = new KeyClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.KeyClient.instantiation -->
  *
  * @see KeyClientBuilder
  * @see PagedIterable
@@ -118,7 +125,13 @@ public CryptographyClient getCryptographyClient(String keyName, String keyVersio
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a new {@link KeyVaultKey EC key}. Prints out the details of the {@link KeyVaultKey created key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.createKey#String-KeyType}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.createKey#String-KeyType -->
+     * <pre>
+     * KeyVaultKey key = keyClient.createKey&#40;&quot;keyName&quot;, KeyType.EC&#41;;
+     *
+     * System.out.printf&#40;&quot;Created key with name: %s and id: %s%n&quot;, key.getName&#40;&#41;, key.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.createKey#String-KeyType -->
      *
      * @param name The name of the {@link KeyVaultKey key} being created.
      * @param keyType The type of {@link KeyVaultKey key} to create. For valid values, see {@link KeyType KeyType}.
@@ -151,7 +164,16 @@ public KeyVaultKey createKey(String name, KeyType keyType) {
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a new {@link KeyVaultKey RSA key} which activates in one day and expires in one year. Prints out the
      * details of the {@link KeyVaultKey created key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.createKey#CreateKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.createKey#CreateKeyOptions -->
+     * <pre>
+     * CreateKeyOptions createKeyOptions = new CreateKeyOptions&#40;&quot;keyName&quot;, KeyType.RSA&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     * KeyVaultKey optionsKey = keyClient.createKey&#40;createKeyOptions&#41;;
+     *
+     * System.out.printf&#40;&quot;Created key with name: %s and id: %s%n&quot;, optionsKey.getName&#40;&#41;, optionsKey.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.createKey#CreateKeyOptions -->
      *
      * @param createKeyOptions The {@link CreateKeyOptions options object} containing information about the
      * {@link KeyVaultKey key} being created.
@@ -185,7 +207,18 @@ public KeyVaultKey createKey(CreateKeyOptions createKeyOptions) {
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a new {@link KeyVaultKey RSA key} which activates in one day and expires in one year. Prints out the
      * details of the {@link KeyVaultKey created key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.createKeyWithResponse#CreateKeyOptions-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.createKeyWithResponse#CreateKeyOptions-Context -->
+     * <pre>
+     * CreateKeyOptions createKeyOptions = new CreateKeyOptions&#40;&quot;keyName&quot;, KeyType.RSA&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     * Response&lt;KeyVaultKey&gt; createKeyResponse =
+     *     keyClient.createKeyWithResponse&#40;createKeyOptions, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Created key with name: %s and: id %s%n&quot;, createKeyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *     createKeyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.createKeyWithResponse#CreateKeyOptions-Context -->
      *
      * @param createKeyOptions The {@link CreateKeyOptions options object} containing information about the
      * {@link KeyVaultKey key} being created.
@@ -221,7 +254,17 @@ public Response<KeyVaultKey> createKeyWithResponse(CreateKeyOptions createKeyOpt
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a new {@link KeyVaultKey RSA key} with size 2048 which activates in one day and expires in one year.
      * Prints out the details of the {@link KeyVaultKey created key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.createRsaKey#CreateRsaKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.createRsaKey#CreateRsaKeyOptions -->
+     * <pre>
+     * CreateRsaKeyOptions createRsaKeyOptions = new CreateRsaKeyOptions&#40;&quot;keyName&quot;&#41;
+     *     .setKeySize&#40;2048&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     * KeyVaultKey rsaKey = keyClient.createRsaKey&#40;createRsaKeyOptions&#41;;
+     *
+     * System.out.printf&#40;&quot;Created key with name: %s and id: %s%n&quot;, rsaKey.getName&#40;&#41;, rsaKey.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.createRsaKey#CreateRsaKeyOptions -->
      *
      * @param createRsaKeyOptions The {@link CreateRsaKeyOptions options object} containing information about the
      * {@link KeyVaultKey RSA key} being created.
@@ -255,7 +298,19 @@ public KeyVaultKey createRsaKey(CreateRsaKeyOptions createRsaKeyOptions) {
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a new {@link KeyVaultKey RSA key} with size 2048 which activates in one day and expires in one year.
      * Prints out the details of the {@link KeyVaultKey created key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.createRsaKeyWithResponse#CreateRsaKeyOptions-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.createRsaKeyWithResponse#CreateRsaKeyOptions-Context -->
+     * <pre>
+     * CreateRsaKeyOptions createRsaKeyOptions = new CreateRsaKeyOptions&#40;&quot;keyName&quot;&#41;
+     *     .setKeySize&#40;2048&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     * Response&lt;KeyVaultKey&gt; createRsaKeyResponse =
+     *     keyClient.createRsaKeyWithResponse&#40;createRsaKeyOptions, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Created key with name: %s and: id %s%n&quot;, createRsaKeyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *     createRsaKeyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.createRsaKeyWithResponse#CreateRsaKeyOptions-Context -->
      *
      * @param createRsaKeyOptions The {@link CreateRsaKeyOptions options object} containing information about the
      * {@link KeyVaultKey RSA key} being created.
@@ -292,7 +347,17 @@ public Response<KeyVaultKey> createRsaKeyWithResponse(CreateRsaKeyOptions create
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a new {@link KeyVaultKey EC key} with a {@link KeyCurveName#P_384 P-384} web key curve. The key
      * activates in one day and expires in one year. Prints out the details of the {@link KeyVaultKey created key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.createEcKey#CreateOctKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.createEcKey#CreateOctKeyOptions -->
+     * <pre>
+     * CreateEcKeyOptions createEcKeyOptions = new CreateEcKeyOptions&#40;&quot;keyName&quot;&#41;
+     *     .setCurveName&#40;KeyCurveName.P_384&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     * KeyVaultKey ecKey = keyClient.createEcKey&#40;createEcKeyOptions&#41;;
+     *
+     * System.out.printf&#40;&quot;Created key with name: %s and id: %s%n&quot;, ecKey.getName&#40;&#41;, ecKey.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.createEcKey#CreateOctKeyOptions -->
      *
      * @param createEcKeyOptions The {@link CreateEcKeyOptions options object} containing information about the
      * {@link KeyVaultKey EC key} being created.
@@ -328,7 +393,19 @@ public KeyVaultKey createEcKey(CreateEcKeyOptions createEcKeyOptions) {
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a new {@link KeyVaultKey EC key} with a {@link KeyCurveName#P_384 P-384} web key curve. The key
      * activates in one day and expires in one year. Prints out the details of the {@link KeyVaultKey created key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.createEcKeyWithResponse#CreateEcKeyOptions-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.createEcKeyWithResponse#CreateEcKeyOptions-Context -->
+     * <pre>
+     * CreateEcKeyOptions createEcKeyOptions = new CreateEcKeyOptions&#40;&quot;keyName&quot;&#41;
+     *     .setCurveName&#40;KeyCurveName.P_384&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     * Response&lt;KeyVaultKey&gt; createEcKeyResponse =
+     *     keyClient.createEcKeyWithResponse&#40;createEcKeyOptions, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Created key with name: %s and: id %s%n&quot;, createEcKeyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *     createEcKeyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.createEcKeyWithResponse#CreateEcKeyOptions-Context -->
      *
      * @param createEcKeyOptions The {@link CreateEcKeyOptions options object} containing information about the
      * {@link KeyVaultKey EC key} being created.
@@ -362,7 +439,16 @@ public Response<KeyVaultKey> createEcKeyWithResponse(CreateEcKeyOptions createEc
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a new {@link KeyVaultKey symmetric key}. The {@link KeyVaultKey key} activates in one day and expires
      * in one year. Prints out the details of the newly {@link KeyVaultKey created key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.async.KeyClient.createOctKey#CreateOctKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.async.KeyClient.createOctKey#CreateOctKeyOptions -->
+     * <pre>
+     * CreateOctKeyOptions createOctKeyOptions = new CreateOctKeyOptions&#40;&quot;keyName&quot;&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     * KeyVaultKey octKey = keyClient.createOctKey&#40;createOctKeyOptions&#41;;
+     *
+     * System.out.printf&#40;&quot;Created key with name: %s and id: %s%n&quot;, octKey.getName&#40;&#41;, octKey.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.async.KeyClient.createOctKey#CreateOctKeyOptions -->
      *
      * @param createOctKeyOptions The {@link CreateOctKeyOptions options object} containing information about the
      * {@link KeyVaultKey symmetric key} being created.
@@ -394,7 +480,18 @@ public KeyVaultKey createOctKey(CreateOctKeyOptions createOctKeyOptions) {
      * <p><strong>Code Samples</strong></p>
      * <p>Creates a new {@link KeyVaultKey symmetric key}. The {@link KeyVaultKey key} activates in one day and expires
      * in one year. Prints out the details of the newly {@link KeyVaultKey created key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.async.KeyClient.createOctKey#CreateOctKeyOptions-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.async.KeyClient.createOctKey#CreateOctKeyOptions-Context -->
+     * <pre>
+     * CreateOctKeyOptions createOctKeyOptions = new CreateOctKeyOptions&#40;&quot;keyName&quot;&#41;
+     *     .setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;1&#41;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusYears&#40;1&#41;&#41;;
+     * Response&lt;KeyVaultKey&gt; createOctKeyResponse =
+     *     keyClient.createOctKeyWithResponse&#40;createOctKeyOptions, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Created key with name: %s and: id %s%n&quot;, createOctKeyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *     createOctKeyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.async.KeyClient.createOctKey#CreateOctKeyOptions-Context -->
      *
      * @param createOctKeyOptions The {@link CreateOctKeyOptions options object} containing information about the
      * {@link KeyVaultKey symmetric key} being created.
@@ -421,7 +518,13 @@ public Response<KeyVaultKey> createOctKeyWithResponse(CreateOctKeyOptions create
      * <p><strong>Code Samples</strong></p>
      * <p>Imports a new {@link KeyVaultKey key} into the key vault. Prints out the details of the
      * {@link KeyVaultKey imported key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.importKey#String-JsonWebKey}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.importKey#String-JsonWebKey -->
+     * <pre>
+     * KeyVaultKey key = keyClient.importKey&#40;&quot;keyName&quot;, jsonWebKeyToImport&#41;;
+     *
+     * System.out.printf&#40;&quot;Imported key with name: %s and id: %s%n&quot;, key.getName&#40;&#41;, key.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.importKey#String-JsonWebKey -->
      *
      * @param name The name for the {@link KeyVaultKey imported key}.
      * @param keyMaterial The {@link JsonWebKey} being imported.
@@ -452,7 +555,16 @@ public KeyVaultKey importKey(String name, JsonWebKey keyMaterial) {
      * <p><strong>Code Samples</strong></p>
      * <p>Imports a new {@link KeyVaultKey key} into the key vault. Prints out the details of the
      * {@link KeyVaultKey imported key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.importKey#ImportKeyOptions}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.importKey#ImportKeyOptions -->
+     * <pre>
+     * ImportKeyOptions options = new ImportKeyOptions&#40;&quot;keyName&quot;, jsonWebKeyToImport&#41;
+     *     .setHardwareProtected&#40;false&#41;;
+     * KeyVaultKey importedKey = keyClient.importKey&#40;options&#41;;
+     *
+     * System.out.printf&#40;&quot;Imported key with name: %s and id: %s%n&quot;, importedKey.getName&#40;&#41;,
+     *     importedKey.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.importKey#ImportKeyOptions -->
      *
      * @param importKeyOptions The {@link ImportKeyOptions options object} containing information about the
      * {@link JsonWebKey} being imported.
@@ -484,7 +596,17 @@ public KeyVaultKey importKey(ImportKeyOptions importKeyOptions) {
      * <p><strong>Code Samples</strong></p>
      * <p>Imports a new {@link KeyVaultKey key} into the key vault. Prints out the details of the
      * {@link KeyVaultKey imported key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.importKeyWithResponse#ImportKeyOptions-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.importKeyWithResponse#ImportKeyOptions-Context -->
+     * <pre>
+     * ImportKeyOptions importKeyOptions = new ImportKeyOptions&#40;&quot;keyName&quot;, jsonWebKeyToImport&#41;
+     *     .setHardwareProtected&#40;false&#41;;
+     * Response&lt;KeyVaultKey&gt; response =
+     *     keyClient.importKeyWithResponse&#40;importKeyOptions, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Imported key with name: %s and id: %s%n&quot;, response.getValue&#40;&#41;.getName&#40;&#41;,
+     *     response.getValue&#40;&#41;.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.importKeyWithResponse#ImportKeyOptions-Context -->
      *
      * @param importKeyOptions The {@link ImportKeyOptions options object} containing information about the
      * {@link JsonWebKey} being imported.
@@ -508,7 +630,15 @@ public Response<KeyVaultKey> importKeyWithResponse(ImportKeyOptions importKeyOpt
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a specific version of the {@link KeyVaultKey key} in the key vault. Prints out the details of the
      * {@link KeyVaultKey retrieved key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.getKey#String-String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.getKey#String-String -->
+     * <pre>
+     * String keyVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     * KeyVaultKey keyWithVersion = keyClient.getKey&#40;&quot;keyName&quot;, keyVersion&#41;;
+     *
+     * System.out.printf&#40;&quot;Retrieved key with name: %s and: id %s%n&quot;, keyWithVersion.getName&#40;&#41;,
+     *     keyWithVersion.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.getKey#String-String -->
      *
      * @param name The name of the {@link KeyVaultKey key}, cannot be {@code null}.
      * @param version The version of the {@link KeyVaultKey key}  to retrieve. If this is an empty string or
@@ -534,7 +664,16 @@ public KeyVaultKey getKey(String name, String version) {
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a specific version of the {@link KeyVaultKey key} in the key vault. Prints out the details of the
      * {@link KeyVaultKey retrieved key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.getKeyWithResponse#String-String-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.getKeyWithResponse#String-String-Context -->
+     * <pre>
+     * String keyVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     * Response&lt;KeyVaultKey&gt; getKeyResponse =
+     *     keyClient.getKeyWithResponse&#40;&quot;keyName&quot;, keyVersion, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Retrieved key with name: %s and: id %s%n&quot;, getKeyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *     getKeyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.getKeyWithResponse#String-String-Context -->
      *
      * @param name The name of the {@link KeyVaultKey key}, cannot be {@code null}.
      * @param context Additional {@link Context} that is passed through the {@link HttpPipeline} during the service
@@ -563,7 +702,14 @@ public Response<KeyVaultKey> getKeyWithResponse(String name, String version, Con
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a specific version of the {@link KeyVaultKey key} in the key vault. Prints out the details of the
      * {@link KeyVaultKey retrieved key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.getKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.getKey#String -->
+     * <pre>
+     * KeyVaultKey keyWithVersionValue = keyClient.getKey&#40;&quot;keyName&quot;&#41;;
+     *
+     * System.out.printf&#40;&quot;Retrieved key with name: %s and: id %s%n&quot;, keyWithVersionValue.getName&#40;&#41;,
+     *     keyWithVersionValue.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.getKey#String -->
      *
      * @param name The name of the {@link KeyVaultKey key}, cannot be {@code null}.
      *
@@ -590,7 +736,18 @@ public KeyVaultKey getKey(String name) {
      * <p><strong>Code Samples</strong></p>
      * <p>Gets the latest version of the {@link KeyVaultKey key}, changes its expiry time and
      * {@link KeyOperation key operations} and the updates the {@link KeyVaultKey key} in the key vault.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.updateKeyProperties#KeyProperties-KeyOperation}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.updateKeyProperties#KeyProperties-KeyOperation -->
+     * <pre>
+     * KeyVaultKey key = keyClient.getKey&#40;&quot;keyName&quot;&#41;;
+     *
+     * key.getProperties&#40;&#41;.setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;60&#41;&#41;;
+     *
+     * KeyVaultKey updatedKey = keyClient.updateKeyProperties&#40;key.getProperties&#40;&#41;, KeyOperation.ENCRYPT,
+     *     KeyOperation.DECRYPT&#41;;
+     *
+     * System.out.printf&#40;&quot;Key is updated with name %s and id %s %n&quot;, updatedKey.getName&#40;&#41;, updatedKey.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.updateKeyProperties#KeyProperties-KeyOperation -->
      *
      * @param keyProperties The {@link KeyProperties key properties} object with updated properties.
      * @param keyOperations The updated {@link KeyOperation key operations} to associate with the key.
@@ -620,7 +777,20 @@ public KeyVaultKey updateKeyProperties(KeyProperties keyProperties, KeyOperation
      * <p><strong>Code Samples</strong></p>
      * <p>Gets the latest version of the {@link KeyVaultKey key}, changes its expiry time and
      * {@link KeyOperation key operations} and the updates the {@link KeyVaultKey key} in the key vault.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.updateKeyPropertiesWithResponse#KeyProperties-Context-KeyOperation}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.updateKeyPropertiesWithResponse#KeyProperties-Context-KeyOperation -->
+     * <pre>
+     * KeyVaultKey key = keyClient.getKey&#40;&quot;keyName&quot;&#41;;
+     *
+     * key.getProperties&#40;&#41;.setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;60&#41;&#41;;
+     *
+     * Response&lt;KeyVaultKey&gt; updateKeyResponse =
+     *     keyClient.updateKeyPropertiesWithResponse&#40;key.getProperties&#40;&#41;, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;,
+     *         KeyOperation.ENCRYPT, KeyOperation.DECRYPT&#41;;
+     *
+     * System.out.printf&#40;&quot;Updated key with name: %s and id: %s%n&quot;, updateKeyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *     updateKeyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.updateKeyPropertiesWithResponse#KeyProperties-Context-KeyOperation -->
      *
      * @param keyProperties The {@link KeyProperties key properties} object with updated properties.
      * @param context Additional {@link Context} that is passed through the {@link HttpPipeline} during the service
@@ -654,7 +824,22 @@ public Response<KeyVaultKey> updateKeyPropertiesWithResponse(KeyProperties keyPr
      * <p><strong>Code Samples</strong></p>
      * <p>Deletes the {@link KeyVaultKey key} from the key vault. Prints out the recovery id of the
      * {@link KeyVaultKey deleted key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.deleteKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.deleteKey#String -->
+     * <pre>
+     * SyncPoller&lt;DeletedKey, Void&gt; deleteKeyPoller = keyClient.beginDeleteKey&#40;&quot;keyName&quot;&#41;;
+     * PollResponse&lt;DeletedKey&gt; deleteKeyPollResponse = deleteKeyPoller.poll&#40;&#41;;
+     *
+     * &#47;&#47; Deleted date only works for SoftDelete Enabled Key Vault.
+     * DeletedKey deletedKey = deleteKeyPollResponse.getValue&#40;&#41;;
+     *
+     * System.out.printf&#40;&quot;Key delete date: %s%n&quot; + deletedKey.getDeletedOn&#40;&#41;&#41;;
+     * System.out.printf&#40;&quot;Deleted key's recovery id: %s%n&quot;, deletedKey.getRecoveryId&#40;&#41;&#41;;
+     *
+     * &#47;&#47; Key is being deleted on server.
+     * deleteKeyPoller.waitForCompletion&#40;&#41;;
+     * &#47;&#47; Key is deleted
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.deleteKey#String -->
      *
      * @param name The name of the {@link KeyVaultKey key} to be deleted.
      *
@@ -675,7 +860,13 @@ public SyncPoller<DeletedKey, Void> beginDeleteKey(String name) {
      * <p><strong>Code Samples</strong></p>
      * <p>Gets the {@link KeyVaultKey deleted key} from the key vault enabled for soft-delete. Prints out the details
      * of the {@link KeyVaultKey deleted key}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.getDeletedKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.getDeletedKey#String -->
+     * <pre>
+     * DeletedKey deletedKey = keyClient.getDeletedKey&#40;&quot;keyName&quot;&#41;;
+     *
+     * System.out.printf&#40;&quot;Deleted key's recovery id: %s%n&quot;, deletedKey.getRecoveryId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.getDeletedKey#String -->
      *
      * @param name The name of the deleted {@link KeyVaultKey key}.
      *
@@ -696,7 +887,14 @@ public DeletedKey getDeletedKey(String name) {
      * <p><strong>Code Samples</strong></p>
      * <p>Gets the {@link KeyVaultKey deleted key} from the key vault enabled for soft-delete. Prints out the details
      * of the {@link KeyVaultKey deleted key} returned in the {@link Response HTTPresponse}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.getDeletedKeyWithResponse#String-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.getDeletedKeyWithResponse#String-Context -->
+     * <pre>
+     * Response&lt;DeletedKey&gt; deletedKeyResponse =
+     *     keyClient.getDeletedKeyWithResponse&#40;&quot;keyName&quot;, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Deleted key with recovery id: %s%n&quot;, deletedKeyResponse.getValue&#40;&#41;.getRecoveryId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.getDeletedKeyWithResponse#String-Context -->
      *
      * @param name The name of the deleted {@link KeyVaultKey key}.
      * @param context Additional {@link Context} that is passed through the {@link HttpPipeline} during the service
@@ -719,7 +917,11 @@ public Response<DeletedKey> getDeletedKeyWithResponse(String name, Context conte
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Purges the {@link KeyVaultKey deleted key} from the key vault enabled for soft-delete.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.purgeDeletedKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.purgeDeletedKey#String -->
+     * <pre>
+     * keyClient.purgeDeletedKey&#40;&quot;deletedKeyName&quot;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.purgeDeletedKey#String -->
      *
      * @param name The name of the {@link KeyVaultKey deleted key}.
      *
@@ -738,7 +940,14 @@ public void purgeDeletedKey(String name) {
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Purges the {@link KeyVaultKey deleted key} from the key vault enabled for soft-delete.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.purgeDeletedKeyWithResponse#String-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.purgeDeletedKeyWithResponse#String-Context -->
+     * <pre>
+     * Response&lt;Void&gt; purgeDeletedKeyResponse = keyClient.purgeDeletedKeyWithResponse&#40;&quot;deletedKeyName&quot;,
+     *     new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Purge response status code: %d%n&quot;, purgeDeletedKeyResponse.getStatusCode&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.purgeDeletedKeyWithResponse#String-Context -->
      *
      * @param name The name of the {@link KeyVaultKey deleted key}.
      * @param context Additional {@link Context} that is passed through the {@link HttpPipeline} during the service
@@ -762,7 +971,21 @@ public Response<Void> purgeDeletedKeyWithResponse(String name, Context context)
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Recovers the {@link KeyVaultKey deleted key} from the key vault enabled for soft-delete.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.recoverDeletedKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.recoverDeletedKey#String -->
+     * <pre>
+     * SyncPoller&lt;KeyVaultKey, Void&gt; recoverKeyPoller = keyClient.beginRecoverDeletedKey&#40;&quot;deletedKeyName&quot;&#41;;
+     *
+     * PollResponse&lt;KeyVaultKey&gt; recoverKeyPollResponse = recoverKeyPoller.poll&#40;&#41;;
+     *
+     * KeyVaultKey recoveredKey = recoverKeyPollResponse.getValue&#40;&#41;;
+     * System.out.printf&#40;&quot;Recovered key name: %s%n&quot;, recoveredKey.getName&#40;&#41;&#41;;
+     * System.out.printf&#40;&quot;Recovered key id: %s%n&quot;, recoveredKey.getId&#40;&#41;&#41;;
+     *
+     * &#47;&#47; Key is being recovered on server.
+     * recoverKeyPoller.waitForCompletion&#40;&#41;;
+     * &#47;&#47; Key is recovered
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.recoverDeletedKey#String -->
      *
      * @param name The name of the {@link KeyVaultKey deleted key} to be recovered.
      *
@@ -791,7 +1014,13 @@ public SyncPoller<KeyVaultKey, Void> beginRecoverDeletedKey(String name) {
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Backs up the {@link KeyVaultKey key} from the key vault.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.backupKey#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.backupKey#String -->
+     * <pre>
+     * byte[] keyBackup = keyClient.backupKey&#40;&quot;keyName&quot;&#41;;
+     *
+     * System.out.printf&#40;&quot;Key backup byte array length: %s%n&quot;, keyBackup.length&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.backupKey#String -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      *
@@ -821,7 +1050,13 @@ public byte[] backupKey(String name) {
      * <p><strong>Code Samples</strong></p>
      * <p>Backs up the {@link KeyVaultKey key} from the key vault and prints out the length of the key's backup byte
      * array returned in the {@link Response HTTPresponse}.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.backupKeyWithResponse#String-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.backupKeyWithResponse#String-Context -->
+     * <pre>
+     * Response&lt;byte[]&gt; backupKeyResponse = keyClient.backupKeyWithResponse&#40;&quot;keyName&quot;, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Key backup byte array length: %s%n&quot;, backupKeyResponse.getValue&#40;&#41;.length&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.backupKeyWithResponse#String-Context -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      * @param context Additional {@link Context} that is passed through the {@link HttpPipeline} during the service
@@ -853,7 +1088,13 @@ public Response<byte[]> backupKeyWithResponse(String name, Context context) {
      * <p><strong>Code Samples</strong></p>
      * <p>Restores the {@link KeyVaultKey key} in the key vault from its backup.</p>
      * // Pass the key backup byte array to the restore operation.
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.restoreKeyBackup#byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.restoreKeyBackup#byte -->
+     * <pre>
+     * byte[] keyBackupByteArray = &#123;&#125;;
+     * KeyVaultKey keyResponse = keyClient.restoreKeyBackup&#40;keyBackupByteArray&#41;;
+     * System.out.printf&#40;&quot;Restored key with name: %s and: id %s%n&quot;, keyResponse.getName&#40;&#41;, keyResponse.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.restoreKeyBackup#byte -->
      *
      * @param backup The backup blob associated with the {@link KeyVaultKey key}.
      *
@@ -883,7 +1124,15 @@ public KeyVaultKey restoreKeyBackup(byte[] backup) {
      * <p>Restores the {@link KeyVaultKey key} in the key vault from its backup. Prints out the details of the
      * {@link KeyVaultKey restored key} returned in the {@link Response HTTPresponse}.</p>
      * // Pass the key backup byte array to the restore operation.
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.restoreKeyBackupWithResponse#byte-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.restoreKeyBackupWithResponse#byte-Context -->
+     * <pre>
+     * Response&lt;KeyVaultKey&gt; keyResponse = keyClient.restoreKeyBackupWithResponse&#40;keyBackupByteArray,
+     *     new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Restored key with name: %s and: id %s%n&quot;,
+     *     keyResponse.getValue&#40;&#41;.getName&#40;&#41;, keyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.restoreKeyBackupWithResponse#byte-Context -->
      *
      * @param backup The backup blob associated with the {@link KeyVaultKey key}.
      * @param context Additional {@link Context} that is passed through the {@link HttpPipeline} during the service
@@ -909,13 +1158,34 @@ public Response<KeyVaultKey> restoreKeyBackupWithResponse(byte[] backup, Context
      * <p>It is possible to get {@link KeyVaultKey full keys} with key material from this information. Loop over the
      * {@link KeyProperties} and call {@link KeyClient#getKey(String, String)}. This will return the
      * {@link KeyVaultKey key} with key material included as of its latest version.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeys}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeys -->
+     * <pre>
+     * for &#40;KeyProperties keyProperties : keyClient.listPropertiesOfKeys&#40;&#41;&#41; &#123;
+     *     KeyVaultKey key = keyClient.getKey&#40;keyProperties.getName&#40;&#41;, keyProperties.getVersion&#40;&#41;&#41;;
+     *
+     *     System.out.printf&#40;&quot;Retrieved key with name: %s and type: %s%n&quot;, key.getName&#40;&#41;, key.getKeyType&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeys -->
      *
      * <p><strong>Code Samples to iterate keys by page</strong></p>
      * <p>It is possible to get {@link KeyVaultKey full keys} with key material from this information. Iterate over all
      * the {@link KeyProperties} by page and call {@link KeyClient#getKey(String, String)}. This will return the
      * {@link KeyVaultKey key} with key material included as of its latest version.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeys.iterableByPage}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeys.iterableByPage -->
+     * <pre>
+     * keyClient.listPropertiesOfKeys&#40;&#41;.iterableByPage&#40;&#41;.forEach&#40;pagedResponse -&gt; &#123;
+     *     System.out.printf&#40;&quot;Got response details. Url: %s. Status code: %d.%n&quot;,
+     *         pagedResponse.getRequest&#40;&#41;.getUrl&#40;&#41;, pagedResponse.getStatusCode&#40;&#41;&#41;;
+     *     pagedResponse.getElements&#40;&#41;.forEach&#40;keyProperties -&gt; &#123;
+     *         KeyVaultKey key = keyClient.getKey&#40;keyProperties.getName&#40;&#41;, keyProperties.getVersion&#40;&#41;&#41;;
+     *
+     *         System.out.printf&#40;&quot;Retrieved key with name: %s and type: %s%n&quot;, key.getName&#40;&#41;,
+     *             key.getKeyType&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeys.iterableByPage -->
      *
      * @return {@link PagedIterable} of {@link KeyProperties key} of all the {@link KeyVaultKey keys} in the vault.
      */
@@ -935,13 +1205,35 @@ public PagedIterable<KeyProperties> listPropertiesOfKeys() {
      * <p>It is possible to get {@link KeyVaultKey full keys} with key material from this information. Loop over the
      * {@link KeyProperties} and call {@link KeyClient#getKey(String, String)}. This will return the
      * {@link KeyVaultKey key} with key material included as of its latest version.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeys#Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeys#Context -->
+     * <pre>
+     * for &#40;KeyProperties keyProperties : keyClient.listPropertiesOfKeys&#40;new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;&#41; &#123;
+     *     KeyVaultKey key = keyClient.getKey&#40;keyProperties.getName&#40;&#41;, keyProperties.getVersion&#40;&#41;&#41;;
+     *
+     *     System.out.printf&#40;&quot;Retrieved key with name: %s and type: %s%n&quot;, key.getName&#40;&#41;,
+     *         key.getKeyType&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeys#Context -->
      *
      * <p><strong>Code Samples to iterate keys by page</strong></p>
      * <p>It is possible to get {@link KeyVaultKey full keys} with key material from this information. Iterate over all
      * the {@link KeyProperties} by page and call {@link KeyClient#getKey(String, String)}. This will return the
      * {@link KeyVaultKey key} with key material included as of its latest version.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeys.iterableByPage}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeys.iterableByPage -->
+     * <pre>
+     * keyClient.listPropertiesOfKeys&#40;&#41;.iterableByPage&#40;&#41;.forEach&#40;pagedResponse -&gt; &#123;
+     *     System.out.printf&#40;&quot;Got response details. Url: %s. Status code: %d.%n&quot;,
+     *         pagedResponse.getRequest&#40;&#41;.getUrl&#40;&#41;, pagedResponse.getStatusCode&#40;&#41;&#41;;
+     *     pagedResponse.getElements&#40;&#41;.forEach&#40;keyProperties -&gt; &#123;
+     *         KeyVaultKey key = keyClient.getKey&#40;keyProperties.getName&#40;&#41;, keyProperties.getVersion&#40;&#41;&#41;;
+     *
+     *         System.out.printf&#40;&quot;Retrieved key with name: %s and type: %s%n&quot;, key.getName&#40;&#41;,
+     *             key.getKeyType&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeys.iterableByPage -->
      *
      * @param context Additional {@link Context} that is passed through the {@link HttpPipeline} during the service
      * call.
@@ -962,12 +1254,27 @@ public PagedIterable<KeyProperties> listPropertiesOfKeys(Context context) {
      * <p><strong>Code Samples</strong></p>
      * <p>Lists the {@link DeletedKey deleted keys} in the key vault and for each {@link DeletedKey deleted key} prints
      * out its recovery id.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.listDeletedKeys}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.listDeletedKeys -->
+     * <pre>
+     * for &#40;DeletedKey deletedKey : keyClient.listDeletedKeys&#40;&#41;&#41; &#123;
+     *     System.out.printf&#40;&quot;Deleted key's recovery id:%s%n&quot;, deletedKey.getRecoveryId&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.listDeletedKeys -->
      *
      * <p><strong>Code Samples to iterate over deleted keys by page</strong></p>
      * <p>Iterates over the {@link DeletedKey deleted keys} by page in the key vault and for each deleted key prints out
      * its recovery id.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.listDeletedKeys.iterableByPage}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.listDeletedKeys.iterableByPage -->
+     * <pre>
+     * keyClient.listDeletedKeys&#40;&#41;.iterableByPage&#40;&#41;.forEach&#40;pagedResponse -&gt; &#123;
+     *     System.out.printf&#40;&quot;Got response details. Url: %s. Status code: %d.%n&quot;,
+     *         pagedResponse.getRequest&#40;&#41;.getUrl&#40;&#41;, pagedResponse.getStatusCode&#40;&#41;&#41;;
+     *     pagedResponse.getElements&#40;&#41;.forEach&#40;deletedKey -&gt;
+     *         System.out.printf&#40;&quot;Deleted key's recovery id:%s%n&quot;, deletedKey.getRecoveryId&#40;&#41;&#41;&#41;;
+     * &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.listDeletedKeys.iterableByPage -->
      *
      * @return {@link PagedIterable} of all of the {@link DeletedKey deleted keys} in the vault.
      */
@@ -985,12 +1292,27 @@ public PagedIterable<DeletedKey> listDeletedKeys() {
      * <p><strong>Code Samples</strong></p>
      * <p>Lists the {@link DeletedKey deleted keys} in the key vault and for each {@link DeletedKey deleted key} prints
      * out its recovery id.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.listDeletedKeys#Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.listDeletedKeys#Context -->
+     * <pre>
+     * for &#40;DeletedKey deletedKey : keyClient.listDeletedKeys&#40;new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;&#41; &#123;
+     *     System.out.printf&#40;&quot;Deleted key's recovery id:%s%n&quot;, deletedKey.getRecoveryId&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.listDeletedKeys#Context -->
      *
      * <p><strong>Code Samples to iterate over deleted keys by page</strong></p>
      * <p>Iterates over the {@link DeletedKey deleted keys} by page in the key vault and for each deleted key prints out
      * its recovery id.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.listDeletedKeys.iterableByPage}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.listDeletedKeys.iterableByPage -->
+     * <pre>
+     * keyClient.listDeletedKeys&#40;&#41;.iterableByPage&#40;&#41;.forEach&#40;pagedResponse -&gt; &#123;
+     *     System.out.printf&#40;&quot;Got response details. Url: %s. Status code: %d.%n&quot;,
+     *         pagedResponse.getRequest&#40;&#41;.getUrl&#40;&#41;, pagedResponse.getStatusCode&#40;&#41;&#41;;
+     *     pagedResponse.getElements&#40;&#41;.forEach&#40;deletedKey -&gt;
+     *         System.out.printf&#40;&quot;Deleted key's recovery id:%s%n&quot;, deletedKey.getRecoveryId&#40;&#41;&#41;&#41;;
+     * &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.listDeletedKeys.iterableByPage -->
      *
      * @param context Additional {@link Context} that is passed through the {@link HttpPipeline} during the service
      * call.
@@ -1011,13 +1333,32 @@ public PagedIterable<DeletedKey> listDeletedKeys(Context context) {
      * <p>It is possible to get {@link KeyVaultKey full keys} with key material for each version from this information.
      * Loop over the {@link KeyProperties key} and call {@link KeyClient#getKey(String, String)}. This will return the
      * {@link KeyVaultKey keys} with key material included of the specified versions.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeyVersions#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeyVersions#String -->
+     * <pre>
+     * for &#40;KeyProperties keyProperties : keyClient.listPropertiesOfKeyVersions&#40;&quot;keyName&quot;&#41;&#41; &#123;
+     *     KeyVaultKey key = keyClient.getKey&#40;keyProperties.getName&#40;&#41;, keyProperties.getVersion&#40;&#41;&#41;;
+     *
+     *     System.out.printf&#40;&quot;Retrieved key version: %s with name: %s and type: %s%n&quot;,
+     *         key.getProperties&#40;&#41;.getVersion&#40;&#41;, key.getName&#40;&#41;, key.getKeyType&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeyVersions#String -->
      *
      * <p><strong>Code Samples to iterate over key versions by page</strong></p>
      * <p>It is possible to get {@link KeyVaultKey full keys} with key material for each version from this information.
      * Iterate over all the {@link KeyProperties key} by page and call {@link KeyClient#getKey(String, String)}. This
      * will return the {@link KeyVaultKey keys} with key material included of the specified versions.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeyVersions.iterableByPage}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeyVersions.iterableByPage -->
+     * <pre>
+     * keyClient.listPropertiesOfKeyVersions&#40;&quot;keyName&quot;&#41;.iterableByPage&#40;&#41;.forEach&#40;pagedResponse -&gt; &#123;
+     *     System.out.printf&#40;&quot;Got response details. Url: %s. Status code: %d.%n&quot;,
+     *         pagedResponse.getRequest&#40;&#41;.getUrl&#40;&#41;, pagedResponse.getStatusCode&#40;&#41;&#41;;
+     *     pagedResponse.getElements&#40;&#41;.forEach&#40;keyProperties -&gt;
+     *         System.out.printf&#40;&quot;Key name: %s. Key version: %s.%n&quot;, keyProperties.getName&#40;&#41;,
+     *             keyProperties.getVersion&#40;&#41;&#41;&#41;;
+     * &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeyVersions.iterableByPage -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      *
@@ -1040,13 +1381,32 @@ public PagedIterable<KeyProperties> listPropertiesOfKeyVersions(String name) {
      * <p>It is possible to get {@link KeyVaultKey full keys} with key material for each version from this information.
      * Loop over the {@link KeyProperties key} and call {@link KeyClient#getKey(String, String)}. This will return the
      * {@link KeyVaultKey keys} with key material included of the specified versions.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeyVersions#String-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeyVersions#String-Context -->
+     * <pre>
+     * for &#40;KeyProperties keyProperties : keyClient.listPropertiesOfKeyVersions&#40;&quot;keyName&quot;, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;&#41; &#123;
+     *     KeyVaultKey key = keyClient.getKey&#40;keyProperties.getName&#40;&#41;, keyProperties.getVersion&#40;&#41;&#41;;
+     *
+     *     System.out.printf&#40;&quot;Retrieved key version: %s with name: %s and type: %s%n&quot;,
+     *         key.getProperties&#40;&#41;.getVersion&#40;&#41;, key.getName&#40;&#41;, key.getKeyType&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeyVersions#String-Context -->
      *
      * <p><strong>Code Samples to iterate over key versions by page</strong></p>
      * <p>It is possible to get {@link KeyVaultKey full keys} with key material for each version from this information.
      * Iterate over all the {@link KeyProperties key} by page and call {@link KeyClient#getKey(String, String)}. This
      * will return the {@link KeyVaultKey keys} with key material included of the specified versions.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeyVersions.iterableByPage}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeyVersions.iterableByPage -->
+     * <pre>
+     * keyClient.listPropertiesOfKeyVersions&#40;&quot;keyName&quot;&#41;.iterableByPage&#40;&#41;.forEach&#40;pagedResponse -&gt; &#123;
+     *     System.out.printf&#40;&quot;Got response details. Url: %s. Status code: %d.%n&quot;,
+     *         pagedResponse.getRequest&#40;&#41;.getUrl&#40;&#41;, pagedResponse.getStatusCode&#40;&#41;&#41;;
+     *     pagedResponse.getElements&#40;&#41;.forEach&#40;keyProperties -&gt;
+     *         System.out.printf&#40;&quot;Key name: %s. Key version: %s.%n&quot;, keyProperties.getName&#40;&#41;,
+     *             keyProperties.getVersion&#40;&#41;&#41;&#41;;
+     * &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.listPropertiesOfKeyVersions.iterableByPage -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      * @param context Additional {@link Context} that is passed through the {@link HttpPipeline} during the service
@@ -1069,7 +1429,14 @@ public PagedIterable<KeyProperties> listPropertiesOfKeyVersions(String name, Con
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a number of bytes containing random values from a Managed HSM. Prints out the retrieved bytes in
      * base64Url format.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.getRandomBytes#int}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.getRandomBytes#int -->
+     * <pre>
+     * int amount = 16;
+     * RandomBytes randomBytes = keyClient.getRandomBytes&#40;amount&#41;;
+     *
+     * System.out.printf&#40;&quot;Retrieved %d random bytes: %s%n&quot;, amount, Arrays.toString&#40;randomBytes.getBytes&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.getRandomBytes#int -->
      *
      * @param count The requested number of random bytes.
      *
@@ -1085,7 +1452,16 @@ public RandomBytes getRandomBytes(int count) {
      * <p><strong>Code Samples</strong></p>
      * <p>Gets a number of bytes containing random values from a Managed HSM. Prints out the
      * {@link Response HTTP Response} details and the retrieved bytes in base64Url format.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.getRandomBytesWithResponse#int-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.getRandomBytesWithResponse#int-Context -->
+     * <pre>
+     * int amountOfBytes = 16;
+     * Response&lt;RandomBytes&gt; response =
+     *     keyClient.getRandomBytesWithResponse&#40;amountOfBytes, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Response received successfully with status code: %d. Retrieved %d random bytes: %s%n&quot;,
+     *     response.getStatusCode&#40;&#41;, amountOfBytes, Arrays.toString&#40;response.getValue&#40;&#41;.getBytes&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.getRandomBytesWithResponse#int-Context -->
      *
      * @param count The requested number of random bytes.
      * @param context Additional {@link Context} that is passed through the {@link HttpPipeline} during the service
@@ -1106,7 +1482,14 @@ public Response<RandomBytes> getRandomBytesWithResponse(int count, Context conte
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Releases a {@link KeyVaultKey key}. Prints out the signed object that contains the release key.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.releaseKey#String-String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.releaseKey#String-String -->
+     * <pre>
+     * String target = &quot;someAttestationToken&quot;;
+     * ReleaseKeyResult releaseKeyResult = keyClient.releaseKey&#40;&quot;keyName&quot;, target&#41;;
+     *
+     * System.out.printf&#40;&quot;Signed object containing released key: %s%n&quot;, releaseKeyResult&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.releaseKey#String-String -->
      *
      * @param name The name of the {@link KeyVaultKey key} to release.
      * @param target The attestation assertion for the target of the {@link KeyVaultKey key} release.
@@ -1129,7 +1512,15 @@ public ReleaseKeyResult releaseKey(String name, String target) {
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Releases a {@link KeyVaultKey key}. Prints out the signed object that contains the release key.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.releaseKey#String-String-String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.releaseKey#String-String-String -->
+     * <pre>
+     * String myKeyVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     * String myTarget = &quot;someAttestationToken&quot;;
+     * ReleaseKeyResult releaseKeyVersionResult = keyClient.releaseKey&#40;&quot;keyName&quot;, myKeyVersion, myTarget&#41;;
+     *
+     * System.out.printf&#40;&quot;Signed object containing released key: %s%n&quot;, releaseKeyVersionResult&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.releaseKey#String-String-String -->
      *
      * @param name The name of the {@link KeyVaultKey key} to release.
      * @param version The version of the key to release. If this is empty or {@code null}, this call is equivalent to
@@ -1154,7 +1545,23 @@ public ReleaseKeyResult releaseKey(String name, String version, String target) {
      * <p><strong>Code Samples</strong></p>
      * <p>Releases a {@link KeyVaultKey key}. Prints out the
      * {@link Response HTTP Response} details and the signed object that contains the release key.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.releaseKeyWithResponse#String-String-String-ReleaseKeyOptions-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.releaseKeyWithResponse#String-String-String-ReleaseKeyOptions-Context -->
+     * <pre>
+     * String releaseKeyVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     * String releaseTarget = &quot;someAttestationToken&quot;;
+     * ReleaseKeyOptions releaseKeyOptions = new ReleaseKeyOptions&#40;&#41;
+     *     .setAlgorithm&#40;KeyExportEncryptionAlgorithm.RSA_AES_KEY_WRAP_256&#41;
+     *     .setNonce&#40;&quot;someNonce&quot;&#41;;
+     *
+     * Response&lt;ReleaseKeyResult&gt; releaseKeyResultResponse =
+     *     keyClient.releaseKeyWithResponse&#40;&quot;keyName&quot;, releaseKeyVersion, releaseTarget, releaseKeyOptions,
+     *         new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Response received successfully with status code: %d. Signed object containing&quot;
+     *         + &quot;released key: %s%n&quot;, releaseKeyResultResponse.getStatusCode&#40;&#41;,
+     *     releaseKeyResultResponse.getValue&#40;&#41;.getValue&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.releaseKeyWithResponse#String-String-String-ReleaseKeyOptions-Context -->
      *
      * @param name The name of the {@link KeyVaultKey key} to release.
      * @param version The version of the {@link KeyVaultKey key} to release. If this is empty or {@code null}, this call
@@ -1183,7 +1590,14 @@ public Response<ReleaseKeyResult> releaseKeyWithResponse(String name, String ver
      *
      * <p><strong>Code Samples</strong></p>
      * <p>Rotates a {@link KeyVaultKey key}. Prints out {@link KeyVaultKey rotated key} details.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.rotateKeyWithResponse#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.rotateKeyWithResponse#String -->
+     * <pre>
+     * KeyVaultKey key = keyClient.rotateKey&#40;&quot;keyName&quot;&#41;;
+     *
+     * System.out.printf&#40;&quot;Rotated key with name: %s and version:%s%n&quot;, key.getName&#40;&#41;,
+     *     key.getProperties&#40;&#41;.getVersion&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.rotateKeyWithResponse#String -->
      *
      * @param name The name of {@link KeyVaultKey key} to be rotated. The system will generate a new version in the
      * specified {@link KeyVaultKey key}.
@@ -1205,7 +1619,15 @@ public KeyVaultKey rotateKey(String name) {
      * <p><strong>Code Samples</strong></p>
      * <p>Rotates a {@link KeyVaultKey key}. Prints out the {@link Response HTTP Response} and
      * {@link KeyVaultKey rotated key} details.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.rotateKeyWithResponse#String-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.rotateKeyWithResponse#String-Context -->
+     * <pre>
+     * Response&lt;KeyVaultKey&gt; keyResponse = keyClient.rotateKeyWithResponse&#40;&quot;keyName&quot;, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Response received successfully with status code: %d. Rotated key with name: %s and&quot;
+     *         + &quot;version: %s%n&quot;, keyResponse.getStatusCode&#40;&#41;, keyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *     keyResponse.getValue&#40;&#41;.getProperties&#40;&#41;.getVersion&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.rotateKeyWithResponse#String-Context -->
      *
      * @param name The name of {@link KeyVaultKey key} to be rotated. The system will generate a new version in the
      * specified {@link KeyVaultKey key}.
@@ -1230,7 +1652,13 @@ public Response<KeyVaultKey> rotateKeyWithResponse(String name, Context context)
      * <p><strong>Code Samples</strong></p>
      * <p>Retrieves the {@link KeyRotationPolicy rotation policy} of a given {@link KeyVaultKey key}. Prints out the
      * {@link KeyRotationPolicy rotation policy key} details.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.getKeyRotationPolicy#String}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.getKeyRotationPolicy#String -->
+     * <pre>
+     * KeyRotationPolicy keyRotationPolicy = keyClient.getKeyRotationPolicy&#40;&quot;keyName&quot;&#41;;
+     *
+     * System.out.printf&#40;&quot;Retrieved key rotation policy with id: %s%n&quot;, keyRotationPolicy.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.getKeyRotationPolicy#String -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      *
@@ -1251,7 +1679,15 @@ public KeyRotationPolicy getKeyRotationPolicy(String name) {
      * <p><strong>Code Samples</strong></p>
      * <p>Retrieves the {@link KeyRotationPolicy rotation policy} of a given {@link KeyVaultKey key}. Prints out the
      * {@link Response HTTP Response} and {@link KeyRotationPolicy rotation policy key} details.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.getKeyRotationPolicyWithResponse#String-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.getKeyRotationPolicyWithResponse#String-Context -->
+     * <pre>
+     * Response&lt;KeyRotationPolicy&gt; keyRotationPolicyResponse =
+     *     keyClient.getKeyRotationPolicyWithResponse&#40;&quot;keyName&quot;, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Response received successfully with status code: %d. Retrieved key rotation policy&quot;
+     *     + &quot;with id: %s%n&quot;, keyRotationPolicyResponse.getStatusCode&#40;&#41;, keyRotationPolicyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.getKeyRotationPolicyWithResponse#String-Context -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      * @param context Additional {@link Context} that is passed through the {@link HttpPipeline} during the service
@@ -1275,7 +1711,27 @@ public Response<KeyRotationPolicy> getKeyRotationPolicyWithResponse(String name,
      * <p><strong>Code Samples</strong></p>
      * <p>Updates the {@link KeyRotationPolicy rotation policy} of a given {@link KeyVaultKey key}. Prints out the
      * {@link KeyRotationPolicy rotation policy key} details.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.updateKeyRotationPolicy#String-KeyRotationPolicyProperties}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.updateKeyRotationPolicy#String-KeyRotationPolicyProperties -->
+     * <pre>
+     * List&lt;KeyRotationLifetimeAction&gt; lifetimeActions = new ArrayList&lt;&gt;&#40;&#41;;
+     * KeyRotationLifetimeAction rotateLifetimeAction = new KeyRotationLifetimeAction&#40;KeyRotationPolicyAction.ROTATE&#41;
+     *     .setTimeAfterCreate&#40;&quot;P90D&quot;&#41;;
+     * KeyRotationLifetimeAction notifyLifetimeAction = new KeyRotationLifetimeAction&#40;KeyRotationPolicyAction.NOTIFY&#41;
+     *     .setTimeBeforeExpiry&#40;&quot;P45D&quot;&#41;;
+     *
+     * lifetimeActions.add&#40;rotateLifetimeAction&#41;;
+     * lifetimeActions.add&#40;notifyLifetimeAction&#41;;
+     *
+     * KeyRotationPolicyProperties policyProperties = new KeyRotationPolicyProperties&#40;&#41;
+     *     .setLifetimeActions&#40;lifetimeActions&#41;
+     *     .setExpiryTime&#40;&quot;P6M&quot;&#41;;
+     *
+     * KeyRotationPolicy keyRotationPolicy =
+     *     keyClient.updateKeyRotationPolicy&#40;&quot;keyName&quot;, policyProperties&#41;;
+     *
+     * System.out.printf&#40;&quot;Updated key rotation policy with id: %s%n&quot;, keyRotationPolicy.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.updateKeyRotationPolicy#String-KeyRotationPolicyProperties -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      * @param keyRotationPolicyProperties The {@link KeyRotationPolicy} for the ke{@link KeyVaultKey key}y.
@@ -1297,7 +1753,28 @@ public KeyRotationPolicy updateKeyRotationPolicy(String name, KeyRotationPolicyP
      * <p><strong>Code Samples</strong></p>
      * <p>Updates the {@link KeyRotationPolicy rotation policy} of a given {@link KeyVaultKey key}. Prints out the
      * {@link Response HTTP Response} and {@link KeyRotationPolicy rotation policy key} details.</p>
-     * {@codesnippet com.azure.security.keyvault.keys.KeyClient.updateKeyRotationPolicyWithResponse#String-KeyRotationPolicyProperties-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.updateKeyRotationPolicyWithResponse#String-KeyRotationPolicyProperties-Context -->
+     * <pre>
+     * List&lt;KeyRotationLifetimeAction&gt; myLifetimeActions = new ArrayList&lt;&gt;&#40;&#41;;
+     * KeyRotationLifetimeAction myRotateLifetimeAction = new KeyRotationLifetimeAction&#40;KeyRotationPolicyAction.ROTATE&#41;
+     *     .setTimeAfterCreate&#40;&quot;P90D&quot;&#41;;
+     * KeyRotationLifetimeAction myNotifyLifetimeAction = new KeyRotationLifetimeAction&#40;KeyRotationPolicyAction.NOTIFY&#41;
+     *     .setTimeBeforeExpiry&#40;&quot;P45D&quot;&#41;;
+     *
+     * myLifetimeActions.add&#40;myRotateLifetimeAction&#41;;
+     * myLifetimeActions.add&#40;myNotifyLifetimeAction&#41;;
+     *
+     * KeyRotationPolicyProperties myPolicyProperties = new KeyRotationPolicyProperties&#40;&#41;
+     *     .setLifetimeActions&#40;myLifetimeActions&#41;
+     *     .setExpiryTime&#40;&quot;P6M&quot;&#41;;
+     *
+     * Response&lt;KeyRotationPolicy&gt; keyRotationPolicyResponse = keyClient.updateKeyRotationPolicyWithResponse&#40;
+     *     &quot;keyName&quot;, myPolicyProperties, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Response received successfully with status code: %d. Updated key rotation policy&quot;
+     *     + &quot;with id: %s%n&quot;, keyRotationPolicyResponse.getStatusCode&#40;&#41;, keyRotationPolicyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.KeyClient.updateKeyRotationPolicyWithResponse#String-KeyRotationPolicyProperties-Context -->
      *
      * @param name The name of the {@link KeyVaultKey key}.
      * @param keyRotationPolicyProperties The {@link KeyRotationPolicyProperties} for the key.
diff --git a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyClientBuilder.java b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyClientBuilder.java
index dfd3ed735b70b..d403f60372a1f 100644
--- a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyClientBuilder.java
+++ b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyClientBuilder.java
@@ -41,23 +41,56 @@
  * <p> The minimal configuration options required by {@link KeyClientBuilder} to build {@link KeyAsyncClient} are
  * {@link String vaultUrl} and {@link TokenCredential credential}. </p>
  *
- * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.instantiation -->
+ * <pre>
+ * KeyAsyncClient keyAsyncClient = new KeyClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.instantiation -->
  *
  * <p>The {@link HttpLogDetailLevel log detail level}, multiple custom {@link HttpLoggingPolicy policies} and custom
  * {@link HttpClient http client} can be optionally configured in the {@link KeyClientBuilder}.</p>
  *
- * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.instantiation.withHttpClient}
+ * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.instantiation.withHttpClient -->
+ * <pre>
+ * KeyAsyncClient keyAsyncClient = new KeyClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .httpLogOptions&#40;new HttpLogOptions&#40;&#41;.setLogLevel&#40;HttpLogDetailLevel.BODY_AND_HEADERS&#41;&#41;
+ *     .httpClient&#40;HttpClient.createDefault&#40;&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.instantiation.withHttpClient -->
  *
  * <p>Alternatively, custom {@link HttpPipeline http pipeline} with custom {@link HttpPipelinePolicy} policies and
  * {@link String vaultUrl} can be specified. It provides finer control over the construction of {@link KeyAsyncClient}
  * and {@link KeyClient}</p>
  *
- * {@codesnippet com.azure.security.keyvault.keys.KeyAsyncClient.instantiation.withHttpPipeline}
+ * <!-- src_embed com.azure.security.keyvault.keys.KeyAsyncClient.instantiation.withHttpPipeline -->
+ * <pre>
+ * HttpPipeline pipeline = new HttpPipelineBuilder&#40;&#41;
+ *     .policies&#40;new KeyVaultCredentialPolicy&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;, new RetryPolicy&#40;&#41;&#41;
+ *     .build&#40;&#41;;
+ * KeyAsyncClient keyAsyncClient = new KeyClientBuilder&#40;&#41;
+ *     .pipeline&#40;pipeline&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.azure.net&#47;&quot;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.KeyAsyncClient.instantiation.withHttpPipeline -->
  *
  * <p> The minimal configuration options required by {@link KeyClientBuilder secretClientBuilder} to build {@link
  * KeyClient} are {@link String vaultUrl} and {@link TokenCredential credential}. </p>
  *
- * {@codesnippet com.azure.security.keyvault.keys.KeyClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.keys.KeyClient.instantiation -->
+ * <pre>
+ * KeyClient keyClient = new KeyClientBuilder&#40;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.KeyClient.instantiation -->
  *
  * @see KeyAsyncClient
  * @see KeyClient
@@ -121,8 +154,8 @@ public KeyClient buildClient() {
      * <p>If {@link KeyClientBuilder#pipeline(HttpPipeline) pipeline} is set, then the {@code pipeline} and
      * {@link KeyClientBuilder#vaultUrl(String) vaultUrl} are used to create the {@link KeyClientBuilder client}.
      * All other builder settings are ignored. If {@code pipeline} is not set, then {@link
-     * KeyClientBuilder#credential(TokenCredential) key vault credential and {@link KeyClientBuilder#vaultUrl(String)}
-     * key vault url are required to build the {@link KeyAsyncClient client}.}</p>
+     * KeyClientBuilder#credential(TokenCredential) key vault credential} and {@link KeyClientBuilder#vaultUrl(String)}
+     * key vault url are required to build the {@link KeyAsyncClient client}.</p>
      *
      * @return A {@link KeyAsyncClient} with the options set from the builder.
      *
diff --git a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyServiceVersion.java b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyServiceVersion.java
index 64eee7e28b7c7..f621d3c271235 100644
--- a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyServiceVersion.java
+++ b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/KeyServiceVersion.java
@@ -9,9 +9,24 @@
  * The versions of Azure Key Vault Key supported by this client library.
  */
 public enum KeyServiceVersion implements ServiceVersion {
+    /**
+     * Service version {@code 7.0}.
+     */
     V7_0("7.0"),
+
+    /**
+     * Service version {@code 7.1}.
+     */
     V7_1("7.1"),
+
+    /**
+     * Service version {@code 7.2}.
+     */
     V7_2("7.2"),
+
+    /**
+     * Service version {@code 7.3-preview}.
+     */
     V7_3_PREVIEW("7.3-preview");
 
     private final String version;
diff --git a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyAsyncClient.java b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyAsyncClient.java
index a030cc2d14613..38ece066b6c16 100644
--- a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyAsyncClient.java
+++ b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyAsyncClient.java
@@ -51,8 +51,22 @@
  *
  * <p><strong>Samples to construct the sync client</strong></p>
  *
- * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.instantiation}
- * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.withJsonWebKey.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.instantiation -->
+ * <pre>
+ * CryptographyAsyncClient cryptographyAsyncClient = new CryptographyClientBuilder&#40;&#41;
+ *     .keyIdentifier&#40;&quot;&lt;your-key-id&gt;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.instantiation -->
+ * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.withJsonWebKey.instantiation -->
+ * <pre>
+ * JsonWebKey jsonWebKey = new JsonWebKey&#40;&#41;.setId&#40;&quot;SampleJsonWebKey&quot;&#41;;
+ * CryptographyAsyncClient cryptographyAsyncClient = new CryptographyClientBuilder&#40;&#41;
+ *     .jsonWebKey&#40;jsonWebKey&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.withJsonWebKey.instantiation -->
  *
  * @see CryptographyClientBuilder
  */
@@ -159,7 +173,14 @@ Mono<String> getKeyId() {
      * <p>Gets the configured key in the client. Subscribes to the call asynchronously and prints out the returned key
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.getKey}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.getKey -->
+     * <pre>
+     * cryptographyAsyncClient.getKey&#40;&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;key -&gt;
+     *         System.out.printf&#40;&quot;Key returned with name: %s, and id: %s.%n&quot;, key.getName&#40;&#41;, key.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.getKey -->
      *
      * @return A {@link Mono} containing the requested {@link KeyVaultKey key}.
      *
@@ -182,7 +203,15 @@ public Mono<KeyVaultKey> getKey() {
      * <p>Gets the configured key in the client. Subscribes to the call asynchronously and prints out the returned key
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.getKeyWithResponse}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.getKeyWithResponse -->
+     * <pre>
+     * cryptographyAsyncClient.getKeyWithResponse&#40;&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;keyResponse -&gt;
+     *         System.out.printf&#40;&quot;Key returned with name: %s, and id: %s.%n&quot;, keyResponse.getValue&#40;&#41;.getName&#40;&#41;,
+     *             keyResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.getKeyWithResponse -->
      *
      * @return A {@link Mono} containing a {@link Response} whose {@link Response#getValue() value} contains the
      * requested {@link KeyVaultKey key}.
@@ -240,7 +269,18 @@ Mono<JsonWebKey> getSecretKey() {
      * <p>Encrypts the content. Subscribes to the call asynchronously and prints out the encrypted content details when
      * a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.encrypt#EncryptionAlgorithm-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.encrypt#EncryptionAlgorithm-byte -->
+     * <pre>
+     * byte[] plaintext = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;plaintext&#41;;
+     *
+     * cryptographyAsyncClient.encrypt&#40;EncryptionAlgorithm.RSA_OAEP, plaintext&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;encryptResult -&gt;
+     *         System.out.printf&#40;&quot;Received encrypted content of length: %d, with algorithm: %s.%n&quot;,
+     *             encryptResult.getCipherText&#40;&#41;.length, encryptResult.getAlgorithm&#40;&#41;.toString&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.encrypt#EncryptionAlgorithm-byte -->
      *
      * @param algorithm The algorithm to be used for encryption.
      * @param plaintext The content to be encrypted.
@@ -284,7 +324,24 @@ public Mono<EncryptResult> encrypt(EncryptionAlgorithm algorithm, byte[] plainte
      * <p>Encrypts the content. Subscribes to the call asynchronously and prints out the encrypted content details when
      * a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.encrypt#EncryptParameters}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.encrypt#EncryptParameters -->
+     * <pre>
+     * byte[] plaintextBytes = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;plaintextBytes&#41;;
+     * byte[] iv = &#123;
+     *     &#40;byte&#41; 0x1a, &#40;byte&#41; 0xf3, &#40;byte&#41; 0x8c, &#40;byte&#41; 0x2d, &#40;byte&#41; 0xc2, &#40;byte&#41; 0xb9, &#40;byte&#41; 0x6f, &#40;byte&#41; 0xfd,
+     *     &#40;byte&#41; 0xd8, &#40;byte&#41; 0x66, &#40;byte&#41; 0x94, &#40;byte&#41; 0x09, &#40;byte&#41; 0x23, &#40;byte&#41; 0x41, &#40;byte&#41; 0xbc, &#40;byte&#41; 0x04
+     * &#125;;
+     *
+     * EncryptParameters encryptParameters = EncryptParameters.createA128CbcParameters&#40;plaintextBytes, iv&#41;;
+     *
+     * cryptographyAsyncClient.encrypt&#40;encryptParameters&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;encryptResult -&gt;
+     *         System.out.printf&#40;&quot;Received encrypted content of length: %d, with algorithm: %s.%n&quot;,
+     *             encryptResult.getCipherText&#40;&#41;.length, encryptResult.getAlgorithm&#40;&#41;.toString&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.encrypt#EncryptParameters -->
      *
      * @param encryptParameters The parameters to use in the encryption operation.
      *
@@ -359,7 +416,17 @@ Mono<EncryptResult> encrypt(EncryptParameters encryptParameters, Context context
      * <p>Decrypts the encrypted content. Subscribes to the call asynchronously and prints out the decrypted content
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.decrypt#EncryptionAlgorithm-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.decrypt#EncryptionAlgorithm-byte -->
+     * <pre>
+     * byte[] ciphertext = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;ciphertext&#41;;
+     *
+     * cryptographyAsyncClient.decrypt&#40;EncryptionAlgorithm.RSA_OAEP, ciphertext&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;decryptResult -&gt;
+     *         System.out.printf&#40;&quot;Received decrypted content of length: %d%n&quot;, decryptResult.getPlainText&#40;&#41;.length&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.decrypt#EncryptionAlgorithm-byte -->
      *
      * @param algorithm The algorithm to be used for decryption.
      * @param ciphertext The content to be decrypted.
@@ -401,7 +468,23 @@ public Mono<DecryptResult> decrypt(EncryptionAlgorithm algorithm, byte[] ciphert
      * <p>Decrypts the encrypted content. Subscribes to the call asynchronously and prints out the decrypted content
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.decrypt#DecryptParameters}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.decrypt#DecryptParameters -->
+     * <pre>
+     * byte[] ciphertextBytes = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;ciphertextBytes&#41;;
+     * byte[] iv = &#123;
+     *     &#40;byte&#41; 0x1a, &#40;byte&#41; 0xf3, &#40;byte&#41; 0x8c, &#40;byte&#41; 0x2d, &#40;byte&#41; 0xc2, &#40;byte&#41; 0xb9, &#40;byte&#41; 0x6f, &#40;byte&#41; 0xfd,
+     *     &#40;byte&#41; 0xd8, &#40;byte&#41; 0x66, &#40;byte&#41; 0x94, &#40;byte&#41; 0x09, &#40;byte&#41; 0x23, &#40;byte&#41; 0x41, &#40;byte&#41; 0xbc, &#40;byte&#41; 0x04
+     * &#125;;
+     *
+     * DecryptParameters decryptParameters = DecryptParameters.createA128CbcParameters&#40;ciphertextBytes, iv&#41;;
+     *
+     * cryptographyAsyncClient.decrypt&#40;decryptParameters&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;decryptResult -&gt;
+     *         System.out.printf&#40;&quot;Received decrypted content of length: %d.%n&quot;, decryptResult.getPlainText&#40;&#41;.length&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.decrypt#DecryptParameters -->
      *
      * @param decryptParameters The parameters to use in the decryption operation.
      *
@@ -468,7 +551,21 @@ Mono<DecryptResult> decrypt(DecryptParameters decryptParameters, Context context
      * <p>Sings the digest. Subscribes to the call asynchronously and prints out the signature details when a response
      * has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.sign#SignatureAlgorithm-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.sign#SignatureAlgorithm-byte -->
+     * <pre>
+     * byte[] data = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;data&#41;;
+     * MessageDigest md = MessageDigest.getInstance&#40;&quot;SHA-256&quot;&#41;;
+     * md.update&#40;data&#41;;
+     * byte[] digest = md.digest&#40;&#41;;
+     *
+     * cryptographyAsyncClient.sign&#40;SignatureAlgorithm.ES256, digest&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;signResult -&gt;
+     *         System.out.printf&#40;&quot;Received signature of length: %d, with algorithm: %s.%n&quot;,
+     *             signResult.getSignature&#40;&#41;.length, signResult.getAlgorithm&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.sign#SignatureAlgorithm-byte -->
      *
      * @param algorithm The algorithm to use for signing.
      * @param digest The content from which signature is to be created.
@@ -524,7 +621,21 @@ Mono<SignResult> sign(SignatureAlgorithm algorithm, byte[] digest, Context conte
      * <p>Verifies the signature against the specified digest. Subscribes to the call asynchronously and prints out the
      * verification details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.verify#SignatureAlgorithm-byte-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.verify#SignatureAlgorithm-byte-byte -->
+     * <pre>
+     * byte[] myData = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;myData&#41;;
+     * MessageDigest messageDigest = MessageDigest.getInstance&#40;&quot;SHA-256&quot;&#41;;
+     * messageDigest.update&#40;myData&#41;;
+     * byte[] myDigest = messageDigest.digest&#40;&#41;;
+     *
+     * &#47;&#47; A signature can be obtained from the SignResult returned by the CryptographyAsyncClient.sign&#40;&#41; operation.
+     * cryptographyAsyncClient.verify&#40;SignatureAlgorithm.ES256, myDigest, signature&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;verifyResult -&gt;
+     *         System.out.printf&#40;&quot;Verification status: %s.%n&quot;, verifyResult.isValid&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.verify#SignatureAlgorithm-byte-byte -->
      *
      * @param algorithm The algorithm to use for signing.
      * @param digest The content from which signature was created.
@@ -582,7 +693,18 @@ Mono<VerifyResult> verify(SignatureAlgorithm algorithm, byte[] digest, byte[] si
      * <p>Wraps the key content. Subscribes to the call asynchronously and prints out the wrapped key details when a
      * response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.wrapKey#KeyWrapAlgorithm-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.wrapKey#KeyWrapAlgorithm-byte -->
+     * <pre>
+     * byte[] key = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;key&#41;;
+     *
+     * cryptographyAsyncClient.wrapKey&#40;KeyWrapAlgorithm.RSA_OAEP, key&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;wrapResult -&gt;
+     *         System.out.printf&#40;&quot;Received encrypted key of length: %d, with algorithm: %s.%n&quot;,
+     *             wrapResult.getEncryptedKey&#40;&#41;.length, wrapResult.getAlgorithm&#40;&#41;.toString&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.wrapKey#KeyWrapAlgorithm-byte -->
      *
      * @param algorithm The encryption algorithm to use for wrapping the key.
      * @param key The key content to be wrapped.
@@ -638,7 +760,19 @@ Mono<WrapResult> wrapKey(KeyWrapAlgorithm algorithm, byte[] key, Context context
      * <p>Unwraps the key content. Subscribes to the call asynchronously and prints out the unwrapped key details when
      * a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.unwrapKey#KeyWrapAlgorithm-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.unwrapKey#KeyWrapAlgorithm-byte -->
+     * <pre>
+     * byte[] keyToWrap = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;key&#41;;
+     *
+     * cryptographyAsyncClient.wrapKey&#40;KeyWrapAlgorithm.RSA_OAEP, keyToWrap&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;wrapResult -&gt;
+     *         cryptographyAsyncClient.unwrapKey&#40;KeyWrapAlgorithm.RSA_OAEP, wrapResult.getEncryptedKey&#40;&#41;&#41;
+     *             .subscribe&#40;keyUnwrapResult -&gt;
+     *                 System.out.printf&#40;&quot;Received key of length: %d.%n&quot;, keyUnwrapResult.getKey&#40;&#41;.length&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.unwrapKey#KeyWrapAlgorithm-byte -->
      *
      * @param algorithm The encryption algorithm to use for wrapping the key.
      * @param encryptedKey The encrypted key content to unwrap.
@@ -693,7 +827,18 @@ Mono<UnwrapResult> unwrapKey(KeyWrapAlgorithm algorithm, byte[] encryptedKey, Co
      * <p>Signs the raw data. Subscribes to the call asynchronously and prints out the signature details when a
      * response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.signData#SignatureAlgorithm-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.signData#SignatureAlgorithm-byte -->
+     * <pre>
+     * byte[] data = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;data&#41;;
+     *
+     * cryptographyAsyncClient.sign&#40;SignatureAlgorithm.ES256, data&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;signResult -&gt;
+     *         System.out.printf&#40;&quot;Received signature of length: %d, with algorithm: %s.%n&quot;,
+     *             signResult.getSignature&#40;&#41;.length, signResult.getAlgorithm&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.signData#SignatureAlgorithm-byte -->
      *
      * @param algorithm The algorithm to use for signing.
      * @param data The content from which signature is to be created.
@@ -749,7 +894,18 @@ Mono<SignResult> signData(SignatureAlgorithm algorithm, byte[] data, Context con
      * <p>Verifies the signature against the raw data. Subscribes to the call asynchronously and prints out the
      * verification details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.verifyData#SignatureAlgorithm-byte-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.verifyData#SignatureAlgorithm-byte-byte -->
+     * <pre>
+     * byte[] myData = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;myData&#41;;
+     *
+     * &#47;&#47; A signature can be obtained from the SignResult returned by the CryptographyAsyncClient.sign&#40;&#41; operation.
+     * cryptographyAsyncClient.verify&#40;SignatureAlgorithm.ES256, myData, signature&#41;
+     *     .contextWrite&#40;Context.of&#40;&quot;key1&quot;, &quot;value1&quot;, &quot;key2&quot;, &quot;value2&quot;&#41;&#41;
+     *     .subscribe&#40;verifyResult -&gt;
+     *         System.out.printf&#40;&quot;Verification status: %s.%n&quot;, verifyResult.isValid&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.verifyData#SignatureAlgorithm-byte-byte -->
      *
      * @param algorithm The algorithm to use for signing.
      * @param data The raw content against which signature is to be verified.
diff --git a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyClient.java b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyClient.java
index d96c762c4db42..6a07525a13a38 100644
--- a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyClient.java
+++ b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyClient.java
@@ -32,8 +32,22 @@
  *
  * <p><strong>Samples to construct the sync client</strong></p>
  *
- * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.instantiation}
- * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.withJsonWebKey.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.instantiation -->
+ * <pre>
+ * CryptographyClient cryptographyClient = new CryptographyClientBuilder&#40;&#41;
+ *     .keyIdentifier&#40;&quot;&lt;your-key-id&gt;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.instantiation -->
+ * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.withJsonWebKey.instantiation -->
+ * <pre>
+ * JsonWebKey jsonWebKey = new JsonWebKey&#40;&#41;.setId&#40;&quot;SampleJsonWebKey&quot;&#41;;
+ * CryptographyClient cryptographyClient = new CryptographyClientBuilder&#40;&#41;
+ *     .jsonWebKey&#40;jsonWebKey&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.withJsonWebKey.instantiation -->
  *
  * @see CryptographyClientBuilder
  */
@@ -58,7 +72,13 @@ public class CryptographyClient {
      * <p>Gets the configured key in the client. Subscribes to the call asynchronously and prints out the returned key
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.getKey}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.getKey -->
+     * <pre>
+     * KeyVaultKey key = cryptographyClient.getKey&#40;&#41;;
+     *
+     * System.out.printf&#40;&quot;Key returned with name: %s and id: %s.%n&quot;, key.getName&#40;&#41;, key.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.getKey -->
      *
      * @return A {@link Mono} containing the requested {@link KeyVaultKey key}.
      *
@@ -77,7 +97,14 @@ public KeyVaultKey getKey() {
      * <p>Gets the configured key in the client. Subscribes to the call asynchronously and prints out the returned key
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.getKeyWithResponse#Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.getKeyWithResponse#Context -->
+     * <pre>
+     * KeyVaultKey keyWithVersion = cryptographyClient.getKeyWithResponse&#40;new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;.getValue&#40;&#41;;
+     *
+     * System.out.printf&#40;&quot;Key is returned with name: %s and id %s.%n&quot;, keyWithVersion.getName&#40;&#41;,
+     *     keyWithVersion.getId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.getKeyWithResponse#Context -->
      *
      * @param context Additional context that is passed through the {@link HttpPipeline} during the service call.
      *
@@ -115,7 +142,17 @@ public Response<KeyVaultKey> getKeyWithResponse(Context context) {
      * <p>Encrypts the content. Subscribes to the call asynchronously and prints out the encrypted content details when
      * a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.encrypt#EncryptionAlgorithm-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.encrypt#EncryptionAlgorithm-byte -->
+     * <pre>
+     * byte[] plaintext = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;plaintext&#41;;
+     *
+     * EncryptResult encryptResult = cryptographyClient.encrypt&#40;EncryptionAlgorithm.RSA_OAEP, plaintext&#41;;
+     *
+     * System.out.printf&#40;&quot;Received encrypted content of length: %d, with algorithm: %s.%n&quot;,
+     *     encryptResult.getCipherText&#40;&#41;.length, encryptResult.getAlgorithm&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.encrypt#EncryptionAlgorithm-byte -->
      *
      * @param algorithm The algorithm to be used for encryption.
      * @param plaintext The content to be encrypted.
@@ -156,7 +193,18 @@ public EncryptResult encrypt(EncryptionAlgorithm algorithm, byte[] plaintext) {
      * <p>Encrypts the content. Subscribes to the call asynchronously and prints out the encrypted content details when
      * a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.encrypt#EncryptionAlgorithm-byte-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.encrypt#EncryptionAlgorithm-byte-Context -->
+     * <pre>
+     * byte[] plaintextToEncrypt = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;plaintextToEncrypt&#41;;
+     *
+     * EncryptResult encryptionResult = cryptographyClient.encrypt&#40;EncryptionAlgorithm.RSA_OAEP, plaintextToEncrypt,
+     *     new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Received encrypted content of length: %d, with algorithm: %s.%n&quot;,
+     *     encryptionResult.getCipherText&#40;&#41;.length, encryptionResult.getAlgorithm&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.encrypt#EncryptionAlgorithm-byte-Context -->
      *
      * @param algorithm The algorithm to be used for encryption.
      * @param plaintext The content to be encrypted.
@@ -198,7 +246,22 @@ public EncryptResult encrypt(EncryptionAlgorithm algorithm, byte[] plaintext, Co
      * <p>Encrypts the content. Subscribes to the call asynchronously and prints out the encrypted content details when
      * a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.encrypt#EncryptParameters-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.encrypt#EncryptParameters-Context -->
+     * <pre>
+     * byte[] myPlaintext = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;myPlaintext&#41;;
+     * byte[] iv = &#123;
+     *     &#40;byte&#41; 0x1a, &#40;byte&#41; 0xf3, &#40;byte&#41; 0x8c, &#40;byte&#41; 0x2d, &#40;byte&#41; 0xc2, &#40;byte&#41; 0xb9, &#40;byte&#41; 0x6f, &#40;byte&#41; 0xfd,
+     *     &#40;byte&#41; 0xd8, &#40;byte&#41; 0x66, &#40;byte&#41; 0x94, &#40;byte&#41; 0x09, &#40;byte&#41; 0x23, &#40;byte&#41; 0x41, &#40;byte&#41; 0xbc, &#40;byte&#41; 0x04
+     * &#125;;
+     *
+     * EncryptParameters encryptParameters = EncryptParameters.createA128CbcParameters&#40;myPlaintext, iv&#41;;
+     * EncryptResult encryptedResult = cryptographyClient.encrypt&#40;encryptParameters, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Received encrypted content of length: %d, with algorithm: %s.%n&quot;,
+     *     encryptedResult.getCipherText&#40;&#41;.length, encryptedResult.getAlgorithm&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.encrypt#EncryptParameters-Context -->
      *
      * @param encryptParameters The parameters to use in the encryption operation.
      * @param context Additional context that is passed through the {@link HttpPipeline} during the service call.
@@ -238,7 +301,16 @@ public EncryptResult encrypt(EncryptParameters encryptParameters, Context contex
      * <p>Decrypts the encrypted content. Subscribes to the call asynchronously and prints out the decrypted content
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.decrypt#EncryptionAlgorithm-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.decrypt#EncryptionAlgorithm-byte -->
+     * <pre>
+     * byte[] ciphertext = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;ciphertext&#41;;
+     *
+     * DecryptResult decryptResult = cryptographyClient.decrypt&#40;EncryptionAlgorithm.RSA_OAEP, ciphertext&#41;;
+     *
+     * System.out.printf&#40;&quot;Received decrypted content of length: %d.%n&quot;, decryptResult.getPlainText&#40;&#41;.length&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.decrypt#EncryptionAlgorithm-byte -->
      *
      * @param algorithm The algorithm to be used for decryption.
      * @param ciphertext The content to be decrypted.
@@ -278,7 +350,17 @@ public DecryptResult decrypt(EncryptionAlgorithm algorithm, byte[] ciphertext) {
      * <p>Decrypts the encrypted content. Subscribes to the call asynchronously and prints out the decrypted content
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.decrypt#EncryptionAlgorithm-byte-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.decrypt#EncryptionAlgorithm-byte-Context -->
+     * <pre>
+     * byte[] ciphertextToDecrypt = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;ciphertextToDecrypt&#41;;
+     *
+     * DecryptResult decryptionResult = cryptographyClient.decrypt&#40;EncryptionAlgorithm.RSA_OAEP, ciphertextToDecrypt,
+     *     new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Received decrypted content of length: %d.%n&quot;, decryptionResult.getPlainText&#40;&#41;.length&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.decrypt#EncryptionAlgorithm-byte-Context -->
      *
      * @param algorithm The algorithm to be used for decryption.
      * @param ciphertext The content to be decrypted.
@@ -319,7 +401,21 @@ public DecryptResult decrypt(EncryptionAlgorithm algorithm, byte[] ciphertext, C
      * <p>Decrypts the encrypted content. Subscribes to the call asynchronously and prints out the decrypted content
      * details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.decrypt#DecryptParameters-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.decrypt#DecryptParameters-Context -->
+     * <pre>
+     * byte[] myCiphertext = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;myCiphertext&#41;;
+     * byte[] iv = &#123;
+     *     &#40;byte&#41; 0x1a, &#40;byte&#41; 0xf3, &#40;byte&#41; 0x8c, &#40;byte&#41; 0x2d, &#40;byte&#41; 0xc2, &#40;byte&#41; 0xb9, &#40;byte&#41; 0x6f, &#40;byte&#41; 0xfd,
+     *     &#40;byte&#41; 0xd8, &#40;byte&#41; 0x66, &#40;byte&#41; 0x94, &#40;byte&#41; 0x09, &#40;byte&#41; 0x23, &#40;byte&#41; 0x41, &#40;byte&#41; 0xbc, &#40;byte&#41; 0x04
+     * &#125;;
+     *
+     * DecryptParameters decryptParameters = DecryptParameters.createA128CbcParameters&#40;myCiphertext, iv&#41;;
+     * DecryptResult decryptedResult = cryptographyClient.decrypt&#40;decryptParameters, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Received decrypted content of length: %d.%n&quot;, decryptedResult.getPlainText&#40;&#41;.length&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.decrypt#DecryptParameters-Context -->
      *
      * @param decryptParameters The parameters to use in the decryption operation.
      * @param context Additional context that is passed through the {@link HttpPipeline} during the service call.
@@ -352,7 +448,20 @@ public DecryptResult decrypt(DecryptParameters decryptParameters, Context contex
      * <p>Sings the digest. Subscribes to the call asynchronously and prints out the signature details when a response
      * has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.sign#SignatureAlgorithm-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.sign#SignatureAlgorithm-byte -->
+     * <pre>
+     * byte[] data = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;data&#41;;
+     * MessageDigest md = MessageDigest.getInstance&#40;&quot;SHA-256&quot;&#41;;
+     * md.update&#40;data&#41;;
+     * byte[] digest = md.digest&#40;&#41;;
+     *
+     * SignResult signResult = cryptographyClient.sign&#40;SignatureAlgorithm.ES256, digest&#41;;
+     *
+     * System.out.printf&#40;&quot;Received signature of length: %d, with algorithm: %s.%n&quot;, signResult.getSignature&#40;&#41;.length,
+     *     signResult.getAlgorithm&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.sign#SignatureAlgorithm-byte -->
      *
      * @param algorithm The algorithm to use for signing.
      * @param digest The content from which signature is to be created.
@@ -384,7 +493,21 @@ public SignResult sign(SignatureAlgorithm algorithm, byte[] digest) {
      * <p>Sings the digest. Subscribes to the call asynchronously and prints out the signature details when a response
      * has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.sign#SignatureAlgorithm-byte-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.sign#SignatureAlgorithm-byte-Context -->
+     * <pre>
+     * byte[] dataToVerify = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;dataToVerify&#41;;
+     * MessageDigest myMessageDigest = MessageDigest.getInstance&#40;&quot;SHA-256&quot;&#41;;
+     * myMessageDigest.update&#40;dataToVerify&#41;;
+     * byte[] digestContent = myMessageDigest.digest&#40;&#41;;
+     *
+     * SignResult signResponse = cryptographyClient.sign&#40;SignatureAlgorithm.ES256, digestContent,
+     *     new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Received signature of length: %d, with algorithm: %s.%n&quot;, signResponse.getSignature&#40;&#41;.length,
+     *     signResponse.getAlgorithm&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.sign#SignatureAlgorithm-byte-Context -->
      *
      * @param algorithm The algorithm to use for signing.
      * @param digest The content from which signature is to be created.
@@ -418,7 +541,20 @@ public SignResult sign(SignatureAlgorithm algorithm, byte[] digest, Context cont
      * <p>Verifies the signature against the specified digest. Subscribes to the call asynchronously and prints out the
      * verification details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.verify#SignatureAlgorithm-byte-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.verify#SignatureAlgorithm-byte-byte -->
+     * <pre>
+     * byte[] myData = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;myData&#41;;
+     * MessageDigest messageDigest = MessageDigest.getInstance&#40;&quot;SHA-256&quot;&#41;;
+     * messageDigest.update&#40;myData&#41;;
+     * byte[] myDigest = messageDigest.digest&#40;&#41;;
+     *
+     * &#47;&#47; A signature can be obtained from the SignResult returned by the CryptographyClient.sign&#40;&#41; operation.
+     * VerifyResult verifyResult = cryptographyClient.verify&#40;SignatureAlgorithm.ES256, myDigest, signature&#41;;
+     *
+     * System.out.printf&#40;&quot;Verification status: %s.%n&quot;, verifyResult.isValid&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.verify#SignatureAlgorithm-byte-byte -->
      *
      * @param algorithm The algorithm to use for signing.
      * @param digest The content from which signature was created.
@@ -452,7 +588,21 @@ public VerifyResult verify(SignatureAlgorithm algorithm, byte[] digest, byte[] s
      * <p>Verifies the signature against the specified digest. Subscribes to the call asynchronously and prints out the
      * verification details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.verify#SignatureAlgorithm-byte-byte-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.verify#SignatureAlgorithm-byte-byte-Context -->
+     * <pre>
+     * byte[] dataBytes = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;dataBytes&#41;;
+     * MessageDigest msgDigest = MessageDigest.getInstance&#40;&quot;SHA-256&quot;&#41;;
+     * msgDigest.update&#40;dataBytes&#41;;
+     * byte[] digestBytes = msgDigest.digest&#40;&#41;;
+     *
+     * &#47;&#47; A signature can be obtained from the SignResult returned by the CryptographyClient.sign&#40;&#41; operation.
+     * VerifyResult verifyResponse = cryptographyClient.verify&#40;SignatureAlgorithm.ES256, digestBytes, signatureBytes,
+     *     new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Verification status: %s.%n&quot;, verifyResponse.isValid&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.verify#SignatureAlgorithm-byte-byte-Context -->
      *
      * @param algorithm The algorithm to use for signing.
      * @param digest The content from which signature was created.
@@ -487,7 +637,17 @@ public VerifyResult verify(SignatureAlgorithm algorithm, byte[] digest, byte[] s
      * <p>Wraps the key content. Subscribes to the call asynchronously and prints out the wrapped key details when a
      * response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.wrapKey#KeyWrapAlgorithm-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.wrapKey#KeyWrapAlgorithm-byte -->
+     * <pre>
+     * byte[] key = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;key&#41;;
+     *
+     * WrapResult wrapResult = cryptographyClient.wrapKey&#40;KeyWrapAlgorithm.RSA_OAEP, key&#41;;
+     *
+     * System.out.printf&#40;&quot;Received encrypted key of length: %d, with algorithm: %s.%n&quot;,
+     *     wrapResult.getEncryptedKey&#40;&#41;.length, wrapResult.getAlgorithm&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.wrapKey#KeyWrapAlgorithm-byte -->
      *
      * @param algorithm The encryption algorithm to use for wrapping the key.
      * @param key The key content to be wrapped.
@@ -521,7 +681,18 @@ public WrapResult wrapKey(KeyWrapAlgorithm algorithm, byte[] key) {
      * <p>Wraps the key content. Subscribes to the call asynchronously and prints out the wrapped key details when a
      * response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.wrapKey#KeyWrapAlgorithm-byte-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.wrapKey#KeyWrapAlgorithm-byte-Context -->
+     * <pre>
+     * byte[] keyToWrap = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;keyToWrap&#41;;
+     *
+     * WrapResult keyWrapResult = cryptographyClient.wrapKey&#40;KeyWrapAlgorithm.RSA_OAEP, keyToWrap,
+     *     new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Received encrypted key of length: %d, with algorithm: %s.%n&quot;,
+     *     keyWrapResult.getEncryptedKey&#40;&#41;.length, keyWrapResult.getAlgorithm&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.wrapKey#KeyWrapAlgorithm-byte-Context -->
      *
      * @param algorithm The encryption algorithm to use for wrapping the key.
      * @param key The key content to be wrapped.
@@ -556,7 +727,19 @@ public WrapResult wrapKey(KeyWrapAlgorithm algorithm, byte[] key, Context contex
      * <p>Unwraps the key content. Subscribes to the call asynchronously and prints out the unwrapped key details when
      * a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.unwrapKey#KeyWrapAlgorithm-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.unwrapKey#KeyWrapAlgorithm-byte -->
+     * <pre>
+     * byte[] keyContent = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;keyContent&#41;;
+     *
+     * WrapResult wrapKeyResult = cryptographyClient.wrapKey&#40;KeyWrapAlgorithm.RSA_OAEP, keyContent,
+     *     new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     * UnwrapResult unwrapResult = cryptographyClient.unwrapKey&#40;KeyWrapAlgorithm.RSA_OAEP,
+     *     wrapKeyResult.getEncryptedKey&#40;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Received key of length %d&quot;, unwrapResult.getKey&#40;&#41;.length&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.unwrapKey#KeyWrapAlgorithm-byte -->
      *
      * @param algorithm The encryption algorithm to use for wrapping the key.
      * @param encryptedKey The encrypted key content to unwrap.
@@ -590,7 +773,20 @@ public UnwrapResult unwrapKey(KeyWrapAlgorithm algorithm, byte[] encryptedKey) {
      * <p>Unwraps the key content. Subscribes to the call asynchronously and prints out the unwrapped key details when
      * a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.unwrapKey#KeyWrapAlgorithm-byte-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.unwrapKey#KeyWrapAlgorithm-byte-Context -->
+     * <pre>
+     * byte[] keyContentToWrap = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;keyContentToWrap&#41;;
+     * Context context = new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;;
+     *
+     * WrapResult wrapKeyContentResult =
+     *     cryptographyClient.wrapKey&#40;KeyWrapAlgorithm.RSA_OAEP, keyContentToWrap, context&#41;;
+     * UnwrapResult unwrapKeyResponse =
+     *     cryptographyClient.unwrapKey&#40;KeyWrapAlgorithm.RSA_OAEP, wrapKeyContentResult.getEncryptedKey&#40;&#41;, context&#41;;
+     *
+     * System.out.printf&#40;&quot;Received key of length %d&quot;, unwrapKeyResponse.getKey&#40;&#41;.length&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.unwrapKey#KeyWrapAlgorithm-byte-Context -->
      *
      * @param algorithm The encryption algorithm to use for wrapping the key.
      * @param encryptedKey The encrypted key content to unwrap.
@@ -624,7 +820,17 @@ public UnwrapResult unwrapKey(KeyWrapAlgorithm algorithm, byte[] encryptedKey, C
      * <p>Signs the raw data. Subscribes to the call asynchronously and prints out the signature details when a
      * response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.signData#SignatureAlgorithm-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.signData#SignatureAlgorithm-byte -->
+     * <pre>
+     * byte[] data = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;data&#41;;
+     *
+     * SignResult signResult = cryptographyClient.sign&#40;SignatureAlgorithm.ES256, data&#41;;
+     *
+     * System.out.printf&#40;&quot;Received signature of length: %d, with algorithm: %s.%n&quot;, signResult.getSignature&#40;&#41;.length,
+     *     signResult.getAlgorithm&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.signData#SignatureAlgorithm-byte -->
      *
      * @param algorithm The algorithm to use for signing.
      * @param data The content from which signature is to be created.
@@ -656,7 +862,17 @@ public SignResult signData(SignatureAlgorithm algorithm, byte[] data) {
      * <p>Signs the raw data. Subscribes to the call asynchronously and prints out the signature details when a
      * response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.signData#SignatureAlgorithm-byte-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.signData#SignatureAlgorithm-byte-Context -->
+     * <pre>
+     * byte[] plainTextData = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;plainTextData&#41;;
+     *
+     * SignResult signingResult = cryptographyClient.sign&#40;SignatureAlgorithm.ES256, plainTextData&#41;;
+     *
+     * System.out.printf&#40;&quot;Received signature of length: %d, with algorithm: %s.%n&quot;,
+     *     signingResult.getSignature&#40;&#41;.length, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.signData#SignatureAlgorithm-byte-Context -->
      *
      * @param algorithm The algorithm to use for signing.
      * @param data The content from which signature is to be created.
@@ -690,7 +906,17 @@ public SignResult signData(SignatureAlgorithm algorithm, byte[] data, Context co
      * <p>Verifies the signature against the raw data. Subscribes to the call asynchronously and prints out the
      * verification details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.verifyData#SignatureAlgorithm-byte-byte}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.verifyData#SignatureAlgorithm-byte-byte -->
+     * <pre>
+     * byte[] myData = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;myData&#41;;
+     *
+     * &#47;&#47; A signature can be obtained from the SignResult returned by the CryptographyClient.sign&#40;&#41; operation.
+     * VerifyResult verifyResult = cryptographyClient.verify&#40;SignatureAlgorithm.ES256, myData, signature&#41;;
+     *
+     * System.out.printf&#40;&quot;Verification status: %s.%n&quot;, verifyResult.isValid&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.verifyData#SignatureAlgorithm-byte-byte -->
      *
      * @param algorithm The algorithm to use for signing.
      * @param data The raw content against which signature is to be verified.
@@ -724,7 +950,18 @@ public VerifyResult verifyData(SignatureAlgorithm algorithm, byte[] data, byte[]
      * <p>Verifies the signature against the raw data. Subscribes to the call asynchronously and prints out the
      * verification details when a response has been received.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.verifyData#SignatureAlgorithm-byte-byte-Context}
+     * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.verifyData#SignatureAlgorithm-byte-byte-Context -->
+     * <pre>
+     * byte[] dataToVerify = new byte[100];
+     * new Random&#40;0x1234567L&#41;.nextBytes&#40;dataToVerify&#41;;
+     *
+     * &#47;&#47; A signature can be obtained from the SignResult returned by the CryptographyClient.sign&#40;&#41; operation.
+     * VerifyResult verificationResult = cryptographyClient.verify&#40;SignatureAlgorithm.ES256, dataToVerify,
+     *     mySignature, new Context&#40;&quot;key1&quot;, &quot;value1&quot;&#41;&#41;;
+     *
+     * System.out.printf&#40;&quot;Verification status: %s.%n&quot;, verificationResult.isValid&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.verifyData#SignatureAlgorithm-byte-byte-Context -->
      *
      * @param algorithm The algorithm to use for signing.
      * @param data The raw content against which signature is to be verified.
diff --git a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyClientBuilder.java b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyClientBuilder.java
index 95a040b4cda18..ec2bbc794c4fc 100644
--- a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyClientBuilder.java
+++ b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyClientBuilder.java
@@ -45,26 +45,73 @@
  * for the specific key version that was used for the corresponding inverse operation: {@code Encrypt},
  * {@code Wrap}, or {@code Sign}, respectively.</p>
  *
- * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.instantiation}
- * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.withJsonWebKey.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.instantiation -->
+ * <pre>
+ * CryptographyAsyncClient cryptographyAsyncClient = new CryptographyClientBuilder&#40;&#41;
+ *     .keyIdentifier&#40;&quot;&lt;your-key-id&gt;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.instantiation -->
+ * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.withJsonWebKey.instantiation -->
+ * <pre>
+ * JsonWebKey jsonWebKey = new JsonWebKey&#40;&#41;.setId&#40;&quot;SampleJsonWebKey&quot;&#41;;
+ * CryptographyAsyncClient cryptographyAsyncClient = new CryptographyClientBuilder&#40;&#41;
+ *     .jsonWebKey&#40;jsonWebKey&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.withJsonWebKey.instantiation -->
  *
  * <p>The {@link HttpLogDetailLevel log detail level}, multiple custom {@link HttpLoggingPolicy policies} and a custom
  * {@link HttpClient http client} can be optionally configured in the {@link CryptographyClientBuilder}.</p>
  *
- * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.withHttpClient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.withHttpClient.instantiation -->
+ * <pre>
+ * CryptographyAsyncClient cryptographyAsyncClient = new CryptographyClientBuilder&#40;&#41;
+ *     .keyIdentifier&#40;&quot;&lt;your-key-id&gt;&quot;&#41;
+ *     .httpLogOptions&#40;new HttpLogOptions&#40;&#41;.setLogLevel&#40;HttpLogDetailLevel.BODY_AND_HEADERS&#41;&#41;
+ *     .addPolicy&#40;new KeyVaultCredentialPolicy&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;&#41;
+ *     .httpClient&#40;HttpClient.createDefault&#40;&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.withHttpClient.instantiation -->
  *
  * <p>Alternatively, a custom {@link HttpPipeline http pipeline} with custom {@link HttpPipelinePolicy} policies
  * can be specified. It provides finer control over the construction of {@link CryptographyAsyncClient} and
  * {@link CryptographyClient}</p>
  *
- * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.withPipeline.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.withPipeline.instantiation -->
+ * <pre>
+ * HttpPipeline pipeline = new HttpPipelineBuilder&#40;&#41;
+ *     .policies&#40;new KeyVaultCredentialPolicy&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;, new RetryPolicy&#40;&#41;&#41;
+ *     .build&#40;&#41;;
+ * CryptographyAsyncClient cryptographyAsyncClient = new CryptographyClientBuilder&#40;&#41;
+ *     .pipeline&#40;pipeline&#41;
+ *     .keyIdentifier&#40;&quot;&lt;your-key-id&gt;&quot;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient.withPipeline.instantiation -->
  *
  * <p>The minimal configuration options required by {@link CryptographyClientBuilder cryptographyClientBuilder} to
  * build {@link CryptographyClient} are {@link JsonWebKey jsonWebKey} or
  * {@link String Azure Key Vault key identifier} and {@link TokenCredential credential}.</p>
  *
- * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.instantiation}
- * {@codesnippet com.azure.security.keyvault.keys.cryptography.CryptographyClient.withJsonWebKey.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.instantiation -->
+ * <pre>
+ * CryptographyClient cryptographyClient = new CryptographyClientBuilder&#40;&#41;
+ *     .keyIdentifier&#40;&quot;&lt;your-key-id&gt;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.instantiation -->
+ * <!-- src_embed com.azure.security.keyvault.keys.cryptography.CryptographyClient.withJsonWebKey.instantiation -->
+ * <pre>
+ * JsonWebKey jsonWebKey = new JsonWebKey&#40;&#41;.setId&#40;&quot;SampleJsonWebKey&quot;&#41;;
+ * CryptographyClient cryptographyClient = new CryptographyClientBuilder&#40;&#41;
+ *     .jsonWebKey&#40;jsonWebKey&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.keys.cryptography.CryptographyClient.withJsonWebKey.instantiation -->
  *
  * @see CryptographyAsyncClient
  * @see CryptographyClient
diff --git a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyServiceVersion.java b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyServiceVersion.java
index ec1d46e564c38..f3332fab43fd3 100644
--- a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyServiceVersion.java
+++ b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/cryptography/CryptographyServiceVersion.java
@@ -9,9 +9,24 @@
  * The versions of Azure Key Vault Cryptography supported by this client library.
  */
 public enum CryptographyServiceVersion implements ServiceVersion {
+    /**
+     * Service version {@code 7.0}.
+     */
     V7_0("7.0"),
+
+    /**
+     * Service version {@code 7.1}.
+     */
     V7_1("7.1"),
+
+    /**
+     * Service version {@code 7.2}.
+     */
     V7_2("7.2"),
+
+    /**
+     * Service version {@code 7.3-preview}.
+     */
     V7_3_PREVIEW("7.3-preview");
 
     private final String version;
diff --git a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/models/KeyRotationPolicyAction.java b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/models/KeyRotationPolicyAction.java
index 837eee0c34927..cb7f4a86780ae 100644
--- a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/models/KeyRotationPolicyAction.java
+++ b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/models/KeyRotationPolicyAction.java
@@ -10,7 +10,14 @@
  * Defines the types of key rotation policy actions that can be executed.
  */
 public enum KeyRotationPolicyAction {
+    /**
+     * Rotate policy action.
+     */
     ROTATE("rotate"),
+
+    /**
+     * Notify policy action.
+     */
     NOTIFY("notify");
 
     /**
diff --git a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/models/KeyRotationPolicyProperties.java b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/models/KeyRotationPolicyProperties.java
index 13381f002fa30..78f8954109895 100644
--- a/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/models/KeyRotationPolicyProperties.java
+++ b/sdk/keyvault/azure-security-keyvault-keys/src/main/java/com/azure/security/keyvault/keys/models/KeyRotationPolicyProperties.java
@@ -17,7 +17,14 @@
  */
 @Fluent
 public class KeyRotationPolicyProperties {
+    /**
+     * The expiry time in ISO-8601 format.
+     */
     protected String expiryTime;
+
+    /**
+     * The {@link KeyRotationLifetimeAction}.
+     */
     protected List<KeyRotationLifetimeAction> keyRotationLifetimeActions;
 
     /**
diff --git a/sdk/keyvault/azure-security-keyvault-keys/src/samples/java/com/azure/security/keyvault/keys/ReadmeSamples.java b/sdk/keyvault/azure-security-keyvault-keys/src/samples/java/com/azure/security/keyvault/keys/ReadmeSamples.java
new file mode 100644
index 0000000000000..c92d3ab28c9b2
--- /dev/null
+++ b/sdk/keyvault/azure-security-keyvault-keys/src/samples/java/com/azure/security/keyvault/keys/ReadmeSamples.java
@@ -0,0 +1,264 @@
+// Copyright (c) Microsoft Corporation. All rights reserved.
+// Licensed under the MIT License.
+
+package com.azure.security.keyvault.keys;
+
+import com.azure.core.exception.ResourceNotFoundException;
+import com.azure.core.util.polling.PollResponse;
+import com.azure.core.util.polling.SyncPoller;
+import com.azure.identity.DefaultAzureCredentialBuilder;
+import com.azure.security.keyvault.keys.cryptography.CryptographyAsyncClient;
+import com.azure.security.keyvault.keys.cryptography.CryptographyClient;
+import com.azure.security.keyvault.keys.cryptography.CryptographyClientBuilder;
+import com.azure.security.keyvault.keys.cryptography.models.DecryptResult;
+import com.azure.security.keyvault.keys.cryptography.models.EncryptResult;
+import com.azure.security.keyvault.keys.cryptography.models.EncryptionAlgorithm;
+import com.azure.security.keyvault.keys.models.CreateEcKeyOptions;
+import com.azure.security.keyvault.keys.models.CreateRsaKeyOptions;
+import com.azure.security.keyvault.keys.models.DeletedKey;
+import com.azure.security.keyvault.keys.models.KeyCurveName;
+import com.azure.security.keyvault.keys.models.KeyProperties;
+import com.azure.security.keyvault.keys.models.KeyVaultKey;
+
+import java.io.ByteArrayOutputStream;
+import java.io.DataOutputStream;
+import java.io.IOException;
+import java.security.SecureRandom;
+import java.time.OffsetDateTime;
+
+@SuppressWarnings("unused")
+public class ReadmeSamples {
+    private static final byte[] SEED;
+
+    static {
+        ByteArrayOutputStream bos = new ByteArrayOutputStream();
+        DataOutputStream dos = new DataOutputStream(bos);
+        byte[] seed;
+        try {
+            dos.writeLong(0x1234567L);
+            dos.flush();
+            seed = bos.toByteArray();
+        } catch (IOException ex) {
+            seed = new byte[0];
+        }
+
+        SEED = seed;
+    }
+
+    private final KeyClient keyClient = new KeyClientBuilder()
+        .vaultUrl("<your-key-vault-url>")
+        .credential(new DefaultAzureCredentialBuilder().build())
+        .buildClient();
+    private final KeyAsyncClient keyAsyncClient = new KeyClientBuilder()
+        .vaultUrl("<your-key-vault-url>")
+        .credential(new DefaultAzureCredentialBuilder().build())
+        .buildAsyncClient();
+
+    private final CryptographyClient cryptoClient = new CryptographyClientBuilder()
+        .credential(new DefaultAzureCredentialBuilder().build())
+        .keyIdentifier("<your-key-id-from-key-vault")
+        .buildClient();
+    private final CryptographyAsyncClient cryptoAsyncClient = new CryptographyClientBuilder()
+        .credential(new DefaultAzureCredentialBuilder().build())
+        .keyIdentifier("<your-key-id-from-key-vault")
+        .buildAsyncClient();
+
+    public void createKeyClient() {
+        // BEGIN: readme-sample-createKeyClient
+        KeyClient keyClient = new KeyClientBuilder()
+            .vaultUrl("<your-key-vault-url>")
+            .credential(new DefaultAzureCredentialBuilder().build())
+            .buildClient();
+        // END: readme-sample-createKeyClient
+    }
+
+    public void createCryptographyClient() {
+        // BEGIN: readme-sample-createCryptographyClient
+        // Create client with key identifier from key vault.
+        CryptographyClient cryptoClient = new CryptographyClientBuilder()
+            .credential(new DefaultAzureCredentialBuilder().build())
+            .keyIdentifier("<your-key-id-from-key-vault>")
+            .buildClient();
+        // END: readme-sample-createCryptographyClient
+    }
+
+    public void createKey() {
+        // BEGIN: readme-sample-createKey
+        KeyVaultKey rsaKey = keyClient.createRsaKey(new CreateRsaKeyOptions("CloudRsaKey")
+            .setExpiresOn(OffsetDateTime.now().plusYears(1))
+            .setKeySize(2048));
+        System.out.printf("Key created with name \"%s\" and id %s%n", rsaKey.getName(), rsaKey.getId());
+
+        KeyVaultKey ecKey = keyClient.createEcKey(new CreateEcKeyOptions("CloudEcKey")
+            .setCurveName(KeyCurveName.P_256)
+            .setExpiresOn(OffsetDateTime.now().plusYears(1)));
+        System.out.printf("Key created with name \"%s\" and id %s%n", ecKey.getName(), ecKey.getId());
+        // END: readme-sample-createKey
+    }
+
+    public void retrieveKey() {
+        // BEGIN: readme-sample-retrieveKey
+        KeyVaultKey key = keyClient.getKey("<key-name>");
+        System.out.printf("A key was returned with name \"%s\" and id %s%n", key.getName(), key.getId());
+        // END: readme-sample-retrieveKey
+    }
+
+    public void updateKey() {
+        // BEGIN: readme-sample-updateKey
+        // Get the key to update.
+        KeyVaultKey key = keyClient.getKey("<key-name>");
+        // Update the expiry time of the key.
+        key.getProperties().setExpiresOn(OffsetDateTime.now().plusDays(30));
+        KeyVaultKey updatedKey = keyClient.updateKeyProperties(key.getProperties());
+        System.out.printf("Key's updated expiry time: %s%n", updatedKey.getProperties().getExpiresOn());
+        // END: readme-sample-updateKey
+    }
+
+    public void deleteKey() {
+        // BEGIN: readme-sample-deleteKey
+        SyncPoller<DeletedKey, Void> deletedKeyPoller = keyClient.beginDeleteKey("<key-name>");
+
+        PollResponse<DeletedKey> deletedKeyPollResponse = deletedKeyPoller.poll();
+
+        // Deleted key is accessible as soon as polling begins.
+        DeletedKey deletedKey = deletedKeyPollResponse.getValue();
+        // Deletion date only works for a SoftDelete-enabled Key Vault.
+        System.out.printf("Deletion date: %s%n", deletedKey.getDeletedOn());
+
+        // Key is being deleted on server.
+        deletedKeyPoller.waitForCompletion();
+        // END: readme-sample-deleteKey
+    }
+
+    public void listKeys() {
+        // BEGIN: readme-sample-listKeys
+        // List operations don't return the keys with key material information. So, for each returned key we call getKey to
+        // get the key with its key material information.
+        for (KeyProperties keyProperties : keyClient.listPropertiesOfKeys()) {
+            KeyVaultKey keyWithMaterial = keyClient.getKey(keyProperties.getName(), keyProperties.getVersion());
+            System.out.printf("Received key with name \"%s\" and type \"%s\"%n", keyWithMaterial.getName(),
+                keyWithMaterial.getKey().getKeyType());
+        }
+        // END: readme-sample-listKeys
+    }
+
+    public void encrypt() {
+        // BEGIN: readme-sample-encrypt
+        byte[] plaintext = new byte[100];
+        new SecureRandom(SEED).nextBytes(plaintext);
+
+        // Let's encrypt a simple plain text of size 100 bytes.
+        EncryptResult encryptionResult = cryptoClient.encrypt(EncryptionAlgorithm.RSA_OAEP, plaintext);
+        System.out.printf("Returned ciphertext size is %d bytes with algorithm \"%s\"%n",
+            encryptionResult.getCipherText().length, encryptionResult.getAlgorithm());
+        // END: readme-sample-encrypt
+    }
+
+    public void decrypt() {
+        // BEGIN: readme-sample-decrypt
+        byte[] plaintext = new byte[100];
+        new SecureRandom(SEED).nextBytes(plaintext);
+        EncryptResult encryptionResult = cryptoClient.encrypt(EncryptionAlgorithm.RSA_OAEP, plaintext);
+
+        //Let's decrypt the encrypted result.
+        DecryptResult decryptionResult = cryptoClient.decrypt(EncryptionAlgorithm.RSA_OAEP, encryptionResult.getCipherText());
+        System.out.printf("Returned plaintext size is %d bytes%n", decryptionResult.getPlainText().length);
+        // END: readme-sample-decrypt
+    }
+
+    public void createKeyAsync() {
+        // BEGIN: readme-sample-createKeyAsync
+        keyAsyncClient.createRsaKey(new CreateRsaKeyOptions("CloudRsaKey")
+                .setExpiresOn(OffsetDateTime.now().plusYears(1))
+                .setKeySize(2048))
+            .subscribe(key ->
+                System.out.printf("Key created with name \"%s\" and id %s%n", key.getName(), key.getId()));
+
+        keyAsyncClient.createEcKey(new CreateEcKeyOptions("CloudEcKey")
+                .setExpiresOn(OffsetDateTime.now().plusYears(1)))
+            .subscribe(key ->
+                System.out.printf("Key created with name \"%s\" and id %s%n", key.getName(), key.getId()));
+        // END: readme-sample-createKeyAsync
+    }
+
+    public void retrieveKeyAsync() {
+        // BEGIN: readme-sample-retrieveKeyAsync
+        keyAsyncClient.getKey("<key-name>")
+            .subscribe(key ->
+                System.out.printf("Key was returned with name \"%s\" and id %s%n", key.getName(), key.getId()));
+        // END: readme-sample-retrieveKeyAsync
+    }
+
+    public void updateKeyAsync() {
+        // BEGIN: readme-sample-updateKeyAsync
+        keyAsyncClient.getKey("<key-name>")
+            .flatMap(key -> {
+                // Update the expiry time of the key.
+                key.getProperties().setExpiresOn(OffsetDateTime.now().plusDays(50));
+                return keyAsyncClient.updateKeyProperties(key.getProperties());
+            }).subscribe(updatedKey ->
+                System.out.printf("Key's updated expiry time: %s%n", updatedKey.getProperties().getExpiresOn()));
+        // END: readme-sample-updateKeyAsync
+    }
+
+    public void deleteKeyAsync() {
+        // BEGIN: readme-sample-deleteKeyAsync
+        keyAsyncClient.beginDeleteKey("<key-name>")
+            .subscribe(pollResponse -> {
+                System.out.printf("Deletion status: %s%n", pollResponse.getStatus());
+                System.out.printf("Deleted key name: %s%n", pollResponse.getValue().getName());
+                System.out.printf("Key deletion date: %s%n", pollResponse.getValue().getDeletedOn());
+            });
+        // END: readme-sample-deleteKeyAsync
+    }
+
+    public void listKeysAsync() {
+        // BEGIN: readme-sample-listKeysAsync
+        // The List Keys operation returns keys without their value, so for each key returned we call `getKey` to get its value
+        // as well.
+        keyAsyncClient.listPropertiesOfKeys()
+            .flatMap(keyProperties -> keyAsyncClient.getKey(keyProperties.getName(), keyProperties.getVersion()))
+            .subscribe(key ->
+                System.out.printf("Received key with name \"%s\" and type \"%s\"", key.getName(), key.getKeyType()));
+        // END: readme-sample-listKeysAsync
+    }
+
+    public void encryptAsync() {
+        // BEGIN: readme-sample-encryptAsync
+        byte[] plaintext = new byte[100];
+        new SecureRandom(SEED).nextBytes(plaintext);
+
+        // Let's encrypt a simple plain text of size 100 bytes.
+        cryptoAsyncClient.encrypt(EncryptionAlgorithm.RSA_OAEP, plaintext)
+            .subscribe(encryptionResult -> System.out.printf("Returned ciphertext size is %d bytes with algorithm \"%s\"%n",
+                encryptionResult.getCipherText().length, encryptionResult.getAlgorithm()));
+        // END: readme-sample-encryptAsync
+    }
+
+    public void decryptAsync() {
+        // BEGIN: readme-sample-decryptAsync
+        byte[] plaintext = new byte[100];
+        new SecureRandom(SEED).nextBytes(plaintext);
+
+        // Let's encrypt a simple plain text of size 100 bytes.
+        cryptoAsyncClient.encrypt(EncryptionAlgorithm.RSA_OAEP, plaintext)
+            .flatMap(encryptionResult -> {
+                System.out.printf("Returned ciphertext size is %d bytes with algorithm \"%s\"%n",
+                    encryptionResult.getCipherText().length, encryptionResult.getAlgorithm());
+                //Let's decrypt the encrypted response.
+                return cryptoAsyncClient.decrypt(EncryptionAlgorithm.RSA_OAEP, encryptionResult.getCipherText());
+            }).subscribe(decryptionResult ->
+                System.out.printf("Returned plaintext size is %d bytes%n", decryptionResult.getPlainText().length));
+        // END: readme-sample-decryptAsync
+    }
+
+    public void troubleshooting() {
+        // BEGIN: readme-sample-troubleshooting
+        try {
+            keyClient.getKey("<deleted-key-name>");
+        } catch (ResourceNotFoundException e) {
+            System.out.println(e.getMessage());
+        }
+        // END: readme-sample-troubleshooting
+    }
+}
diff --git a/sdk/keyvault/azure-security-keyvault-perf/pom.xml b/sdk/keyvault/azure-security-keyvault-perf/pom.xml
index 0fb11a6447df2..666c8164db72e 100644
--- a/sdk/keyvault/azure-security-keyvault-perf/pom.xml
+++ b/sdk/keyvault/azure-security-keyvault-perf/pom.xml
@@ -21,6 +21,9 @@
     <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
     <maven.compiler.source>1.8</maven.compiler.source>
     <maven.compiler.target>1.8</maven.compiler.target>
+    <codesnippet.skip>false</codesnippet.skip>
+    <javadocDoclet></javadocDoclet>
+    <javadocDocletOptions></javadocDocletOptions>
   </properties>
 
   <dependencies>
diff --git a/sdk/keyvault/azure-security-keyvault-secrets/README.md b/sdk/keyvault/azure-security-keyvault-secrets/README.md
index 5165d485ce4ef..0530c6cfaa0cf 100644
--- a/sdk/keyvault/azure-security-keyvault-secrets/README.md
+++ b/sdk/keyvault/azure-security-keyvault-secrets/README.md
@@ -27,9 +27,9 @@ Maven dependency for the Azure Key Vault Secrets client library. Add it to your
 - [Azure Subscription][azure_subscription]
 - An existing [Azure Key Vault][azure_keyvault]. If you need to create a Key Vault, you can use the [Azure Cloud Shell][azure_cloud_shell] to create one with this Azure CLI command. Replace `<your-resource-group-name>` and `<your-key-vault-name>` with your own, unique names:
 
-    ```Bash
-    az keyvault create --resource-group <your-resource-group-name> --name <your-key-vault-name>
-    ```
+```bash
+az keyvault create --resource-group <your-resource-group-name> --name <your-key-vault-name>
+```
 
 ### Authenticate the client
 In order to interact with the Key Vault service, you'll need to create an instance of the [SecretClient](#create-secret-client) class. You would need a **vault url** and **client secret credentials (client id, client secret, tenant id)** to instantiate a client object using the `DefaultAzureCredential` examples shown in this document.
@@ -43,55 +43,51 @@ Here is an [Azure Cloud Shell][azure_cloud_shell] snippet below to
 
  * Create a service principal and configure its access to Azure resources:
 
-    ```Bash
-    az ad sp create-for-rbac -n <your-application-name> --skip-assignment
-    ```
+```bash
+az ad sp create-for-rbac -n <your-application-name> --skip-assignment
+```
 
-    Output:
+Output:
 
-    ```json
-    {
-        "appId": "generated-app-ID",
-        "displayName": "dummy-app-name",
-        "name": "http://dummy-app-name",
-        "password": "random-password",
-        "tenant": "tenant-ID"
-    }
-    ```
+```json
+{
+    "appId": "generated-app-ID",
+    "displayName": "dummy-app-name",
+    "name": "http://dummy-app-name",
+    "password": "random-password",
+    "tenant": "tenant-ID"
+}
+```
 
 * Use the above returned credentials information to set **AZURE_CLIENT_ID** (appId), **AZURE_CLIENT_SECRET** (password), and **AZURE_TENANT_ID** (tenant) environment variables. The following example shows a way to do this in Bash:
 
-  ```Bash
-    export AZURE_CLIENT_ID="generated-app-ID"
-    export AZURE_CLIENT_SECRET="random-password"
-    export AZURE_TENANT_ID="tenant-ID"
-  ```
+```bash
+export AZURE_CLIENT_ID="generated-app-ID"
+export AZURE_CLIENT_SECRET="random-password"
+export AZURE_TENANT_ID="tenant-ID"
+````
 
 * Grant the aforementioned application authorization to perform secret operations on the Key Vault:
 
-    ```Bash
-    az keyvault set-policy --name <your-key-vault-name> --spn $AZURE_CLIENT_ID --secret-permissions backup delete get list set
-    ```
+```bash
+az keyvault set-policy --name <your-key-vault-name> --spn $AZURE_CLIENT_ID --secret-permissions backup delete get list set
+```
 
-    > --secret-permissions:
-    > Accepted values: backup, delete, get, list, purge, recover, restore, set
+> --secret-permissions:
+> Accepted values: backup, delete, get, list, purge, recover, restore, set
 
-    If you have enabled role-based access control (RBAC) for Key Vault instead, you can find roles like "Key Vault Secrets Officer" in our [RBAC guide][rbac_guide].
+If you have enabled role-based access control (RBAC) for Key Vault instead, you can find roles like "Key Vault Secrets Officer" in our [RBAC guide][rbac_guide].
 
 * Use the aforementioned Key Vault name to retrieve details of your Vault, which also contain your Key Vault URL:
 
-    ```Bash
-    az keyvault show --name <your-key-vault-name> 
-    ```
+```bash
+az keyvault show --name <your-key-vault-name> 
+```
 
 #### Create secret client
 Once you've populated the **AZURE_CLIENT_ID**, **AZURE_CLIENT_SECRET**, and **AZURE_TENANT_ID** environment variables and replaced **your-key-vault-url** with the URI returned above, you can create the SecretClient:
 
-```Java
-import com.azure.identity.DefaultAzureCredentialBuilder;
-import com.azure.security.keyvault.secrets.SecretClient;
-import com.azure.security.keyvault.secrets.SecretClientBuilder;
-
+```java readme-sample-createSecretClient
 SecretClient secretClient = new SecretClientBuilder()
     .vaultUrl("<your-key-vault-url>")
     .credential(new DefaultAzureCredentialBuilder().build())
@@ -125,17 +121,7 @@ The following sections provide several code snippets covering some of the most c
 Create a secret to be stored in the Azure Key Vault.
 - `setSecret` creates a new secret in the Azure Key Vault. If a secret with the given name already exists then a new version of the secret is created.
 
-```Java
-import com.azure.identity.DefaultAzureCredentialBuilder;
-import com.azure.security.keyvault.secrets.SecretClient;
-import com.azure.security.keyvault.secrets.SecretClientBuilder;
-import com.azure.security.keyvault.secrets.models.KeyVaultSecret;
-
-SecretClient secretClient = new SecretClientBuilder()
-    .vaultUrl("<your-key-vault-url>")
-    .credential(new DefaultAzureCredentialBuilder().build())
-    .buildClient();
-
+```java readme-sample-createSecret
 KeyVaultSecret secret = secretClient.setSecret("<secret-name>", "<secret-value>");
 System.out.printf("Secret created with name \"%s\" and value \"%s\"%n", secret.getName(), secret.getValue());
 ```
@@ -143,7 +129,7 @@ System.out.printf("Secret created with name \"%s\" and value \"%s\"%n", secret.g
 ### Retrieve a secret
 Retrieve a previously stored secret by calling `getSecret`.
 
-```Java
+```java readme-sample-retrieveSecret
 KeyVaultSecret secret = secretClient.getSecret("<secret-name>");
 System.out.printf("Retrieved secret with name \"%s\" and value \"%s\"%n", secret.getName(), secret.getValue());
 ```
@@ -151,7 +137,7 @@ System.out.printf("Retrieved secret with name \"%s\" and value \"%s\"%n", secret
 ### Update an existing secret
 Update an existing secret by calling `updateSecretProperties`.
 
-```Java
+```java readme-sample-updateSecret
 // Get the secret to update.
 KeyVaultSecret secret = secretClient.getSecret("<secret-name>");
 // Update the expiry time of the secret.
@@ -163,7 +149,7 @@ System.out.printf("Secret's updated expiry time: %s%n", updatedSecretProperties.
 ### Delete a secret
 Delete an existing secret by calling `beginDeleteSecret`.
 
-```Java
+```java readme-sample-deleteSecret
 SyncPoller<DeletedSecret, Void> deletedSecretPoller = secretClient.beginDeleteSecret("<secret-name>");
 
 // Deleted secret is accessible as soon as polling begins.
@@ -179,7 +165,7 @@ deletedSecretPoller.waitForCompletion();
 ### List secrets
 List the secrets in the Azure Key Vault by calling `listPropertiesOfSecrets`.
 
-```Java
+```java readme-sample-listSecrets
 // List operations don't return the secrets with value information. So, for each returned secret we call getSecret to
 // get the secret with its value information.
 for (SecretProperties secretProperties : secretClient.listPropertiesOfSecrets()) {
@@ -203,48 +189,38 @@ The following sections provide several code snippets covering some of the most c
 Create a secret to be stored in the Azure Key Vault.
 - `setSecret` creates a new secret in the Azure Key Vault. If a secret with the given name already exists then a new version of the secret is created.
 
-```Java
-import com.azure.identity.DefaultAzureCredentialBuilder;
-import com.azure.security.keyvault.secrets.SecretAsyncClient;
-import com.azure.security.keyvault.secrets.models.Secret;
-
-SecretAsyncClient secretAsyncClient = new SecretClientBuilder()
-    .vaultUrl("<your-key-vault-url>")
-    .credential(new DefaultAzureCredentialBuilder().build())
-    .buildAsyncClient();
-
+```java readme-sample-createSecretAsync
 secretAsyncClient.setSecret("<secret-name>", "<secret-value>")
-    .subscribe(secret ->
-        System.out.printf("Created secret with name \"%s\" and value \"%s\"%n", secret.getName(), secret.getValue()));
+    .subscribe(secret -> System.out.printf("Created secret with name \"%s\" and value \"%s\"%n",
+        secret.getName(), secret.getValue()));
 ```
 
 ### Retrieve a secret asynchronously
 Retrieve a previously stored secret by calling `getSecret`.
 
-```Java
+```java readme-sample-retrieveSecretAsync
 secretAsyncClient.getSecret("<secret-name>")
-    .subscribe(secret ->
-        System.out.printf("Retrieved secret with name \"%s\" and value \"%s\"%n", secret.getName(), secret.getValue()));
+    .subscribe(secret -> System.out.printf("Retrieved secret with name \"%s\" and value \"%s\"%n",
+        secret.getName(), secret.getValue()));
 ```
 
 ### Update an existing secret asynchronously
 Update an existing secret by calling `updateSecretProperties`.
 
-```Java
+```java readme-sample-updateSecretAsync
 secretAsyncClient.getSecret("<secret-name>")
-    .subscribe(secret -> {
+    .flatMap(secret -> {
         // Update the expiry time of the secret.
         secret.getProperties().setExpiresOn(OffsetDateTime.now().plusDays(50));
-        secretAsyncClient.updateSecretProperties(secret.getProperties())
-            .subscribe(updatedSecretProperties ->
-                System.out.printf("Secret's updated expiry time: %s%n", updatedSecretProperties.getExpiresOn()));
-    });
+        return secretAsyncClient.updateSecretProperties(secret.getProperties());
+    }).subscribe(updatedSecretProperties ->
+        System.out.printf("Secret's updated expiry time: %s%n", updatedSecretProperties.getExpiresOn()));
 ```
 
 ### Delete a secret asynchronously
 Delete an existing secret by calling `beginDeleteSecret`.
 
-```Java
+```java readme-sample-deleteSecretAsync
 secretAsyncClient.beginDeleteSecret("<secret-name>")
     .subscribe(pollResponse -> {
         System.out.printf("Deletion status: %s%n", pollResponse.getStatus());
@@ -256,24 +232,24 @@ secretAsyncClient.beginDeleteSecret("<secret-name>")
 ### List secrets asynchronously
 List the secrets in the Azure Key Vault by calling `listPropertiesOfSecrets`.
 
-```Java
+```java readme-sample-listSecretsAsync
 // The List secrets operation returns secrets without their value, so for each secret returned we call `getSecret`
 // to get its value as well.
 secretAsyncClient.listPropertiesOfSecrets()
-    .subscribe(secretProperties ->
-        secretAsyncClient.getSecret(secretProperties.getName(), secretProperties.getVersion())
-            .subscribe(secretResponse ->
-                System.out.printf("Retrieved secret with name \"%s\" and value \"%s\"%n", secretResponse.getName(),
-                    secretResponse.getValue())));
+    .flatMap(secretProperties ->
+        secretAsyncClient.getSecret(secretProperties.getName(), secretProperties.getVersion()))
+    .subscribe(secretResponse ->
+        System.out.printf("Retrieved secret with name \"%s\" and value \"%s\"%n", secretResponse.getName(),
+            secretResponse.getValue()));
 ```
 
 ## Troubleshooting
 ### General
 Azure Key Vault Secret clients raise exceptions. For example, if you try to retrieve a secret after it is deleted a `404` error is returned, indicating the resource was not found. In the following snippet, the error is handled gracefully by catching the exception and displaying additional information about the error.
 
-```java
+```java readme-sample-troubleshooting
 try {
-    secretClient.getSecret("<deleted-secret-name>")
+    secretClient.getSecret("<deleted-secret-name>");
 } catch (ResourceNotFoundException e) {
     System.out.println(e.getMessage());
 }
diff --git a/sdk/keyvault/azure-security-keyvault-secrets/pom.xml b/sdk/keyvault/azure-security-keyvault-secrets/pom.xml
index b565e918a6b20..b7f37dddd2df4 100644
--- a/sdk/keyvault/azure-security-keyvault-secrets/pom.xml
+++ b/sdk/keyvault/azure-security-keyvault-secrets/pom.xml
@@ -51,6 +51,9 @@
       --add-opens com.azure.security.keyvault.secrets/com.azure.security.keyvault.secrets=ALL-UNNAMED
       --add-opens com.azure.security.keyvault.secrets/com.azure.security.keyvault.secrets.models=ALL-UNNAMED
     </javaModulesSurefireArgLine>
+    <codesnippet.skip>false</codesnippet.skip>
+    <javadocDoclet></javadocDoclet>
+    <javadocDocletOptions></javadocDocletOptions>
   </properties>
 
   <dependencies>
diff --git a/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretAsyncClient.java b/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretAsyncClient.java
index 7c705151dac8e..7a3edf59f85c8 100644
--- a/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretAsyncClient.java
+++ b/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretAsyncClient.java
@@ -47,7 +47,15 @@
  * Azure Key Vault.
  *
  * <p><strong>Construct the async client</strong></p>
- * {@codesnippet com.azure.security.keyvault.secrets.async.secretclient.construct}
+ * <!-- src_embed com.azure.security.keyvault.secrets.async.secretclient.construct -->
+ * <pre>
+ * SecretAsyncClient secretAsyncClient = new SecretClientBuilder&#40;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.vault.azure.net&#47;&quot;&#41;
+ *     .httpLogOptions&#40;new HttpLogOptions&#40;&#41;.setLogLevel&#40;HttpLogDetailLevel.BODY_AND_HEADERS&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.secrets.async.secretclient.construct -->
  *
  * @see SecretClientBuilder
  * @see PagedFlux
@@ -118,7 +126,19 @@ Duration getDefaultPollingInterval() {
      * <p>Creates a new secret which activates in one day and expires in one year. Subscribes to the call asynchronously
      * and prints out the newly created secret details when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.setSecret#secret}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.setSecret#secret -->
+     * <pre>
+     * SecretProperties properties = new SecretProperties&#40;&#41;
+     *     .setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;60&#41;&#41;;
+     * KeyVaultSecret newSecret = new KeyVaultSecret&#40;&quot;secretName&quot;, &quot;secretValue&quot;&#41;
+     *     .setProperties&#40;properties&#41;;
+     *
+     * secretAsyncClient.setSecret&#40;newSecret&#41;
+     *     .subscribe&#40;secretResponse -&gt;
+     *     System.out.printf&#40;&quot;Secret is created with name %s and value %s %n&quot;,
+     *         secretResponse.getName&#40;&#41;, secretResponse.getValue&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.setSecret#secret -->
      *
      * @param secret The Secret object containing information about the secret and its properties. The properties
      *     {@link KeyVaultSecret#getName() secret.name} and {@link KeyVaultSecret#getValue() secret.value} cannot be
@@ -150,7 +170,16 @@ public Mono<KeyVaultSecret> setSecret(KeyVaultSecret secret) {
      * <p>Creates a new secret which activates in one day and expires in one year. Subscribes to the call asynchronously
      * and prints out the newly created secret details when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.setSecretWithResponse#secret}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.setSecretWithResponse#secret -->
+     * <pre>
+     * KeyVaultSecret newSecret = new KeyVaultSecret&#40;&quot;secretName&quot;, &quot;secretValue&quot;&#41;.
+     *     setProperties&#40;new SecretProperties&#40;&#41;.setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;60&#41;&#41;&#41;;
+     * secretAsyncClient.setSecretWithResponse&#40;newSecret&#41;
+     *     .subscribe&#40;secretResponse -&gt;
+     *         System.out.printf&#40;&quot;Secret is created with name %s and value %s %n&quot;,
+     *             secretResponse.getValue&#40;&#41;.getName&#40;&#41;, secretResponse.getValue&#40;&#41;.getValue&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.setSecretWithResponse#secret -->
      *
      * @param secret The Secret object containing information about the secret and its properties. The properties
      *     {@link KeyVaultSecret#getName() secret.name} and {@link KeyVaultSecret#getValue() secret.value} cannot be
@@ -194,7 +223,14 @@ Mono<Response<KeyVaultSecret>> setSecretWithResponse(KeyVaultSecret secret, Cont
      * <p><strong>Code sample</strong></p>
      * <p>Creates a new secret in the key vault. Subscribes to the call asynchronously and prints out
      * the newly created secret details when a response is received.</p>
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.setSecret#string-string}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.setSecret#string-string -->
+     * <pre>
+     * secretAsyncClient.setSecret&#40;&quot;secretName&quot;, &quot;secretValue&quot;&#41;
+     *     .subscribe&#40;secretResponse -&gt;
+     *         System.out.printf&#40;&quot;Secret is created with name %s and value %s%n&quot;,
+     *             secretResponse.getName&#40;&#41;, secretResponse.getValue&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.setSecret#string-string -->
      *
      * @param name The name of the secret. It is required and cannot be null.
      * @param value The value of the secret. It is required and cannot be null.
@@ -229,7 +265,18 @@ Mono<Response<KeyVaultSecret>> setSecretWithResponse(String name, String value,
      * <p>Gets a specific version of the secret in the key vault. Subscribes to the call
      * asynchronously and prints out the returned secret details when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.getSecret#string-string}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.getSecret#string-string -->
+     * <pre>
+     * String secretVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     * secretAsyncClient.getSecret&#40;&quot;secretName&quot;, secretVersion&#41;
+     *     &#47;&#47; Passing a Context is optional and useful if you want a set of data to flow through the request.
+     *     &#47;&#47; Otherwise, the line below can be removed.
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;secretWithVersion -&gt;
+     *         System.out.printf&#40;&quot;Secret is returned with name %s and value %s %n&quot;,
+     *             secretWithVersion.getName&#40;&#41;, secretWithVersion.getValue&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.getSecret#string-string -->
      *
      * @param name The name of the secret, cannot be null.
      * @param version The version of the secret to retrieve. If this is an empty string or null, this
@@ -257,7 +304,18 @@ public Mono<KeyVaultSecret> getSecret(String name, String version) {
      * <p><strong>Code sample</strong></p>
      * <p>Gets a specific version of the secret in the key vault. Subscribes to the call asynchronously and prints out
      * the returned secret details when a response is received.</p>
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.getSecretWithResponse#string-string}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.getSecretWithResponse#string-string -->
+     * <pre>
+     * String secretVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     * secretAsyncClient.getSecretWithResponse&#40;&quot;secretName&quot;, secretVersion&#41;
+     *     &#47;&#47; Passing a Context is optional and useful if you want a set of data to flow through the request.
+     *     &#47;&#47; Otherwise, the line below can be removed.
+     *     .subscriberContext&#40;Context.of&#40;key1, value1, key2, value2&#41;&#41;
+     *     .subscribe&#40;secretWithVersion -&gt;
+     *         System.out.printf&#40;&quot;Secret is returned with name %s and value %s %n&quot;,
+     *             secretWithVersion.getValue&#40;&#41;.getName&#40;&#41;, secretWithVersion.getValue&#40;&#41;.getValue&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.getSecretWithResponse#string-string -->
      *
      * @param name The name of the secret, cannot be null.
      * @param version The version of the secret to retrieve. If this is an empty string or null, this call is equivalent
@@ -293,7 +351,14 @@ Mono<Response<KeyVaultSecret>> getSecretWithResponse(String name, String version
      * <p><strong>Code sample</strong></p>
      * <p>Gets latest version of the secret in the key vault. Subscribes to the call asynchronously and prints out the
      * returned secret details when a response is received.</p>
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.getSecret#string}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.getSecret#string -->
+     * <pre>
+     * secretAsyncClient.getSecret&#40;&quot;secretName&quot;&#41;
+     *     .subscribe&#40;secretWithVersion -&gt;
+     *         System.out.printf&#40;&quot;Secret is returned with name %s and value %s %n&quot;,
+     *             secretWithVersion.getName&#40;&#41;, secretWithVersion.getValue&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.getSecret#string -->
      *
      * @param name The name of the secret.
      * @return A {@link Mono} containing the requested {@link KeyVaultSecret secret}.
@@ -322,7 +387,20 @@ public Mono<KeyVaultSecret> getSecret(String name) {
      * time, and then updates it in the Azure Key Vault. Subscribes to the call asynchronously and prints out the
      * returned secret details when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.updateSecretProperties#secretProperties}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.updateSecretProperties#secretProperties -->
+     * <pre>
+     * secretAsyncClient.getSecret&#40;&quot;secretName&quot;&#41;
+     *     .subscribe&#40;secretResponseValue -&gt; &#123;
+     *         SecretProperties secretProperties = secretResponseValue.getProperties&#40;&#41;;
+     *         &#47;&#47;Update the not before time of the secret.
+     *         secretProperties.setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;50&#41;&#41;;
+     *         secretAsyncClient.updateSecretProperties&#40;secretProperties&#41;
+     *             .subscribe&#40;secretResponse -&gt;
+     *                 System.out.printf&#40;&quot;Secret's updated not before time %s %n&quot;,
+     *                     secretResponse.getNotBefore&#40;&#41;.toString&#40;&#41;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.updateSecretProperties#secretProperties -->
      *
      * @param secretProperties The {@link SecretProperties secret properties} object with updated properties.
      * @return A {@link Mono} containing the {@link SecretProperties updated secret}.
@@ -351,7 +429,20 @@ public Mono<SecretProperties> updateSecretProperties(SecretProperties secretProp
      * time, and then updates it in the Azure Key Vault. Subscribes to the call asynchronously and prints out the
      * returned secret details when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.updateSecretPropertiesWithResponse#secretProperties}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.updateSecretPropertiesWithResponse#secretProperties -->
+     * <pre>
+     * secretAsyncClient.getSecret&#40;&quot;secretName&quot;&#41;
+     *     .subscribe&#40;secretResponseValue -&gt; &#123;
+     *         SecretProperties secretProperties = secretResponseValue.getProperties&#40;&#41;;
+     *         &#47;&#47;Update the not before time of the secret.
+     *         secretProperties.setNotBefore&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;50&#41;&#41;;
+     *         secretAsyncClient.updateSecretPropertiesWithResponse&#40;secretProperties&#41;
+     *             .subscribe&#40;secretResponse -&gt;
+     *                 System.out.printf&#40;&quot;Secret's updated not before time %s %n&quot;,
+     *                     secretResponse.getValue&#40;&#41;.getNotBefore&#40;&#41;.toString&#40;&#41;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.updateSecretPropertiesWithResponse#secretProperties -->
      *
      * <p>The {@code secret} is required and its fields {@link SecretProperties#getName() name} and
      * {@link SecretProperties#getVersion() version} cannot be null.</p>
@@ -398,7 +489,16 @@ Mono<Response<SecretProperties>> updateSecretPropertiesWithResponse(SecretProper
      * <p><strong>Code sample</strong></p>
      * <p>Deletes the secret in the Azure Key Vault. Subscribes to the call asynchronously and prints out the deleted
      * secret details when a response is received.</p>
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.deleteSecret#String}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.deleteSecret#String -->
+     * <pre>
+     * secretAsyncClient.beginDeleteSecret&#40;&quot;secretName&quot;&#41;
+     *     .subscribe&#40;pollResponse -&gt; &#123;
+     *         System.out.println&#40;&quot;Delete Status: &quot; + pollResponse.getStatus&#40;&#41;.toString&#40;&#41;&#41;;
+     *         System.out.println&#40;&quot;Deleted Secret Name: &quot; + pollResponse.getValue&#40;&#41;.getName&#40;&#41;&#41;;
+     *         System.out.println&#40;&quot;Deleted Secret Value: &quot; + pollResponse.getValue&#40;&#41;.getValue&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.deleteSecret#String -->
      *
      * @param name The name of the secret to be deleted.
      * @return A {@link PollerFlux} to poll on and retrieve {@link DeletedSecret deleted secret}.
@@ -455,7 +555,13 @@ Mono<Response<DeletedSecret>> deleteSecretWithResponse(String name, Context cont
      * <p>Gets the deleted secret from the key vault <b>enabled for soft-delete</b>. Subscribes to the call
      * asynchronously and prints out the deleted secret details when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.getDeletedSecret#string}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.getDeletedSecret#string -->
+     * <pre>
+     * secretAsyncClient.getDeletedSecret&#40;&quot;secretName&quot;&#41;
+     *     .subscribe&#40;deletedSecretResponse -&gt;
+     *         System.out.printf&#40;&quot;Deleted Secret's Recovery Id %s %n&quot;, deletedSecretResponse.getRecoveryId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.getDeletedSecret#string -->
      *
      * @param name The name of the deleted secret.
      * @return A {@link Mono} containing the {@link DeletedSecret deleted secret}.
@@ -479,7 +585,14 @@ public Mono<DeletedSecret> getDeletedSecret(String name) {
      * <p>Gets the deleted secret from the key vault <b>enabled for soft-delete</b>. Subscribes to the call
      * asynchronously and prints out the deleted secret details when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.getDeletedSecretWithResponse#string}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.getDeletedSecretWithResponse#string -->
+     * <pre>
+     * secretAsyncClient.getDeletedSecretWithResponse&#40;&quot;secretName&quot;&#41;
+     *     .subscribe&#40;deletedSecretResponse -&gt;
+     *         System.out.printf&#40;&quot;Deleted Secret's Recovery Id %s %n&quot;,
+     *             deletedSecretResponse.getValue&#40;&#41;.getRecoveryId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.getDeletedSecretWithResponse#string -->
      *
      * @param name The name of the deleted secret.
      * @return A {@link Mono} containing a {@link Response} whose {@link Response#getValue() value} contains the
@@ -513,7 +626,14 @@ Mono<Response<DeletedSecret>> getDeletedSecretWithResponse(String name, Context
      * <p>Purges the deleted secret from the key vault enabled for <b>soft-delete</b>. Subscribes to the call
      * asynchronously and prints out the status code from the server response when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.purgeDeletedSecret#string}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.purgeDeletedSecret#string -->
+     * <pre>
+     * secretAsyncClient.purgeDeletedSecret&#40;&quot;deletedSecretName&quot;&#41;
+     *     .doOnSuccess&#40;purgeResponse -&gt;
+     *         System.out.println&#40;&quot;Successfully Purged deleted Secret&quot;&#41;&#41;
+     *     .subscribe&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.purgeDeletedSecret#string -->
      *
      * @param name The name of the secret.
      * @return An empty {@link Mono}.
@@ -537,7 +657,13 @@ public Mono<Void> purgeDeletedSecret(String name) {
      * <p>Purges the deleted secret from the key vault enabled for soft-delete. Subscribes to the call
      * asynchronously and prints out the status code from the server response when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.purgeDeletedSecretWithResponse#string}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.purgeDeletedSecretWithResponse#string -->
+     * <pre>
+     * secretAsyncClient.purgeDeletedSecretWithResponse&#40;&quot;deletedSecretName&quot;&#41;
+     *     .subscribe&#40;purgeResponse -&gt;
+     *         System.out.printf&#40;&quot;Purge Status response %d %n&quot;, purgeResponse.getStatusCode&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.purgeDeletedSecretWithResponse#string -->
      *
      * @param name The name of the secret.
      * @return A {@link Mono} containing a Response containing status code and HTTP headers.
@@ -570,7 +696,16 @@ Mono<Response<Void>> purgeDeletedSecretWithResponse(String name, Context context
      * <p>Recovers the deleted secret from the key vault enabled for <b>soft-delete</b>. Subscribes to the call
      * asynchronously and prints out the recovered secret details when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.recoverDeletedSecret#String}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.recoverDeletedSecret#String -->
+     * <pre>
+     * secretAsyncClient.beginRecoverDeletedSecret&#40;&quot;deletedSecretName&quot;&#41;
+     *     .subscribe&#40;pollResponse -&gt; &#123;
+     *         System.out.println&#40;&quot;Recovery Status: &quot; + pollResponse.getStatus&#40;&#41;.toString&#40;&#41;&#41;;
+     *         System.out.println&#40;&quot;Recovered Secret Name: &quot; + pollResponse.getValue&#40;&#41;.getName&#40;&#41;&#41;;
+     *         System.out.println&#40;&quot;Recovered Secret Value: &quot; + pollResponse.getValue&#40;&#41;.getValue&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.recoverDeletedSecret#String -->
      *
      * @param name The name of the deleted secret to be recovered.
      * @return A {@link PollerFlux} to poll on and retrieve the {@link KeyVaultSecret recovered secret}.
@@ -626,7 +761,13 @@ Mono<Response<KeyVaultSecret>> recoverDeletedSecretWithResponse(String name, Con
      * <p>Backs up the secret from the key vault. Subscribes to the call asynchronously and prints out
      * the length of the secret's backup byte array returned in the response.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.backupSecret#string}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.backupSecret#string -->
+     * <pre>
+     * secretAsyncClient.backupSecret&#40;&quot;secretName&quot;&#41;
+     *     .subscribe&#40;secretBackupResponse -&gt;
+     *         System.out.printf&#40;&quot;Secret's Backup Byte array's length %s%n&quot;, secretBackupResponse.length&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.backupSecret#string -->
      *
      * @param name The name of the secret.
      * @return A {@link Mono} containing the backed up secret blob.
@@ -650,7 +791,13 @@ public Mono<byte[]> backupSecret(String name) {
      * <p>Backs up the secret from the key vault. Subscribes to the call asynchronously and prints out
      * the length of the secret's backup byte array returned in the response.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.backupSecretWithResponse#string}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.backupSecretWithResponse#string -->
+     * <pre>
+     * secretAsyncClient.backupSecretWithResponse&#40;&quot;secretName&quot;&#41;
+     *     .subscribe&#40;secretBackupResponse -&gt;
+     *         System.out.printf&#40;&quot;Secret's Backup Byte array's length %s%n&quot;, secretBackupResponse.getValue&#40;&#41;.length&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.backupSecretWithResponse#string -->
      *
      * @param name The name of the secret.
      * @return A {@link Mono} containing a {@link Response} whose {@link Response#getValue() value}
@@ -687,7 +834,15 @@ Mono<Response<byte[]>> backupSecretWithResponse(String name, Context context) {
      * <p>Restores the secret in the key vault from its backup. Subscribes to the call asynchronously
      * and prints out the restored secret details when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.restoreSecret#byte}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.restoreSecret#byte -->
+     * <pre>
+     * &#47;&#47; Pass the secret backup byte array to the restore operation.
+     * byte[] secretBackupByteArray = &#123;&#125;;
+     * secretAsyncClient.restoreSecretBackup&#40;secretBackupByteArray&#41;
+     *     .subscribe&#40;secretResponse -&gt; System.out.printf&#40;&quot;Restored Secret with name %s and value %s %n&quot;,
+     *         secretResponse.getName&#40;&#41;, secretResponse.getValue&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.restoreSecret#byte -->
      *
      * @param backup The backup blob associated with the secret.
      * @return A {@link Mono} containing the {@link KeyVaultSecret restored secret}.
@@ -710,7 +865,15 @@ public Mono<KeyVaultSecret> restoreSecretBackup(byte[] backup) {
      * <p>Restores the secret in the key vault from its backup. Subscribes to the call asynchronously
      * and prints out the restored secret details when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.restoreSecretWithResponse#byte}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.restoreSecretWithResponse#byte -->
+     * <pre>
+     * &#47;&#47; Pass the secret backup byte array to the restore operation.
+     * byte[] secretBackupByteArray = &#123;&#125;;
+     * secretAsyncClient.restoreSecretBackupWithResponse&#40;secretBackupByteArray&#41;
+     *     .subscribe&#40;secretResponse -&gt; System.out.printf&#40;&quot;Restored Secret with name %s and value %s %n&quot;,
+     *         secretResponse.getValue&#40;&#41;.getName&#40;&#41;, secretResponse.getValue&#40;&#41;.getValue&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.restoreSecretWithResponse#byte -->
      *
      * @param backup The backup blob associated with the secret.
      * @return A {@link Mono} containing a {@link Response} whose {@link Response#getValue() value}
@@ -745,7 +908,20 @@ Mono<Response<KeyVaultSecret>> restoreSecretBackupWithResponse(byte[] backup, Co
      * <p>The sample below fetches the all the secret properties in the vault. For each secret retrieved, makes a call
      * to {@link #getSecret(String, String) getSecret(String, String)} to get its value, and then prints it out.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.listSecrets}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.listSecrets -->
+     * <pre>
+     * secretAsyncClient.listPropertiesOfSecrets&#40;&#41;
+     *     .flatMap&#40;secretProperties -&gt; &#123;
+     *         String name = secretProperties.getName&#40;&#41;;
+     *         String version = secretProperties.getVersion&#40;&#41;;
+     *
+     *         System.out.printf&#40;&quot;Getting secret name: '%s', version: %s%n&quot;, name, version&#41;;
+     *         return secretAsyncClient.getSecret&#40;name, version&#41;;
+     *     &#125;&#41;
+     *     .subscribe&#40;secretResponse -&gt; System.out.printf&#40;&quot;Received secret with name %s and type %s&quot;,
+     *         secretResponse.getName&#40;&#41;, secretResponse.getValue&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.listSecrets -->
      *
      * @return A {@link PagedFlux} containing {@link SecretProperties properties} of all the secrets in the vault.
      */
@@ -811,7 +987,13 @@ private Mono<PagedResponse<SecretProperties>> listSecretsFirstPage(Context conte
      * <p>Lists the deleted secrets in the key vault. Subscribes to the call asynchronously and prints out the
      * recovery id of each deleted secret when a response is received.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.listDeletedSecrets}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.listDeletedSecrets -->
+     * <pre>
+     * secretAsyncClient.listDeletedSecrets&#40;&#41;
+     *     .subscribe&#40;deletedSecretResponse -&gt;  System.out.printf&#40;&quot;Deleted Secret's Recovery Id %s %n&quot;,
+     *         deletedSecretResponse.getRecoveryId&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.listDeletedSecrets -->
      *
      * @return A {@link Flux} containing all of the {@link DeletedSecret deleted secrets} in the vault.
      */
@@ -881,7 +1063,17 @@ private Mono<PagedResponse<DeletedSecret>> listDeletedSecretsFirstPage(Context c
      * <p>The sample below fetches the all the versions of the given secret. For each version retrieved, makes a call
      * to {@link #getSecret(String, String) getSecret(String, String)} to get the version's value, and then prints it out.</p>
      *
-     * {@codesnippet com.azure.keyvault.secrets.secretclient.listSecretVersions#string}
+     * <!-- src_embed com.azure.keyvault.secrets.secretclient.listSecretVersions#string -->
+     * <pre>
+     * secretAsyncClient.listPropertiesOfSecretVersions&#40;&quot;secretName&quot;&#41;
+     *     .flatMap&#40;secretProperties -&gt; &#123;
+     *         System.out.println&#40;&quot;Get secret value for version: &quot; + secretProperties.getVersion&#40;&#41;&#41;;
+     *         return secretAsyncClient.getSecret&#40;secretProperties.getName&#40;&#41;, secretProperties.getVersion&#40;&#41;&#41;;
+     *     &#125;&#41;
+     *     .subscribe&#40;secret -&gt; System.out.printf&#40;&quot;Received secret with name %s and type %s%n&quot;,
+     *         secret.getName&#40;&#41;, secret.getValue&#40;&#41;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.keyvault.secrets.secretclient.listSecretVersions#string -->
      *
      * @param name The name of the secret.
      * @return A {@link PagedFlux} containing {@link SecretProperties properties} of all the versions of the specified
diff --git a/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretClient.java b/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretClient.java
index e63f80b3ec13c..c2fab281c3a30 100644
--- a/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretClient.java
+++ b/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretClient.java
@@ -24,7 +24,15 @@
  * Vault.
  *
  * <p><strong>Construct the sync client</strong></p>
- * {@codesnippet com.azure.security.keyvault.secretclient.sync.construct}
+ * <!-- src_embed com.azure.security.keyvault.secretclient.sync.construct -->
+ * <pre>
+ * SecretClient secretClient = new SecretClientBuilder&#40;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.vault.azure.net&#47;&quot;&#41;
+ *     .httpLogOptions&#40;new HttpLogOptions&#40;&#41;.setLogLevel&#40;HttpLogDetailLevel.BODY_AND_HEADERS&#41;&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.secretclient.sync.construct -->
  *
  * @see SecretClientBuilder
  * @see PagedIterable
@@ -61,7 +69,15 @@ public String getVaultUrl() {
      * <p><strong>Code sample</strong></p>
      * <p>Creates a new secret in the key vault. Prints out the details of the newly created secret returned in the
      * response.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.setSecret#secret}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.setSecret#secret -->
+     * <pre>
+     * KeyVaultSecret newSecret = new KeyVaultSecret&#40;&quot;secretName&quot;, &quot;secretValue&quot;&#41;
+     *     .setProperties&#40;new SecretProperties&#40;&#41;.setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;60&#41;&#41;&#41;;
+     * KeyVaultSecret returnedSecret = secretClient.setSecret&#40;newSecret&#41;;
+     * System.out.printf&#40;&quot;Secret is created with name %s and value %s%n&quot;, returnedSecret.getName&#40;&#41;,
+     *     returnedSecret.getValue&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.setSecret#secret -->
      *
      * @param secret The Secret object containing information about the secret and its properties. The properties
      *     {@link KeyVaultSecret#getName() secret.name} and {@link KeyVaultSecret#getValue() secret.value} cannot be
@@ -84,7 +100,12 @@ public KeyVaultSecret setSecret(KeyVaultSecret secret) {
      * <p><strong>Code sample</strong></p>
      * <p>Creates a new secret in the key vault. Prints out the details of the newly created secret returned in the
      * response.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.setSecret#string-string}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.setSecret#string-string -->
+     * <pre>
+     * KeyVaultSecret secret = secretClient.setSecret&#40;&quot;secretName&quot;, &quot;secretValue&quot;&#41;;
+     * System.out.printf&#40;&quot;Secret is created with name %s and value %s%n&quot;, secret.getName&#40;&#41;, secret.getValue&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.setSecret#string-string -->
      *
      * @param name The name of the secret. It is required and cannot be null.
      * @param value The value of the secret. It is required and cannot be null.
@@ -104,7 +125,14 @@ public KeyVaultSecret setSecret(String name, String value) {
      * <p><strong>Code sample</strong></p>
      * <p>Creates a new secret in the key vault. Prints out the details of the newly created secret returned in the
      * response.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.setSecretWithResponse#secret-Context}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.setSecretWithResponse#secret-Context -->
+     * <pre>
+     * KeyVaultSecret newSecret = new KeyVaultSecret&#40;&quot;secretName&quot;, &quot;secretValue&quot;&#41;
+     *          .setProperties&#40;new SecretProperties&#40;&#41;.setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;60&#41;&#41;&#41;;
+     * KeyVaultSecret secret = secretClient.setSecretWithResponse&#40;newSecret, new Context&#40;key1, value1&#41;&#41;.getValue&#40;&#41;;
+     * System.out.printf&#40;&quot;Secret is created with name %s and value %s%n&quot;, secret.getName&#40;&#41;, secret.getValue&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.setSecretWithResponse#secret-Context -->
      *
      * @param secret The Secret object containing information about the secret and its properties. The properties
      *     secret.name and secret.value must be non null.
@@ -124,7 +152,14 @@ public Response<KeyVaultSecret> setSecretWithResponse(KeyVaultSecret secret, Con
      *
      * <p><strong>Code sample</strong></p>
      * <p>Gets a specific version of the secret in the key vault. Prints out the details of the returned secret.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.getSecret#string-string}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.getSecret#string-string -->
+     * <pre>
+     * String secretVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     * KeyVaultSecret secretWithVersion = secretClient.getSecret&#40;&quot;secretName&quot;, secretVersion&#41;;
+     * System.out.printf&#40;&quot;Secret is returned with name %s and value %s%n&quot;,
+     *     secretWithVersion.getName&#40;&#41;, secretWithVersion.getValue&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.getSecret#string-string -->
      *
      * @param name The name of the secret, cannot be null.
      * @param version The version of the secret to retrieve. If this is an empty string or null, this call is
@@ -145,7 +180,13 @@ public KeyVaultSecret getSecret(String name, String version) {
      *
      * <p><strong>Code sample</strong></p>
      * <p>Gets the latest version of the secret in the key vault. Prints out the details of the returned secret.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.getSecret#string}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.getSecret#string -->
+     * <pre>
+     * KeyVaultSecret secretWithoutVersion = secretClient.getSecret&#40;&quot;secretName&quot;, secretVersion&#41;;
+     * System.out.printf&#40;&quot;Secret is returned with name %s and value %s%n&quot;,
+     *     secretWithoutVersion.getName&#40;&#41;, secretWithoutVersion.getValue&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.getSecret#string -->
      *
      * @param name The name of the secret.
      * @return The requested {@link KeyVaultSecret}.
@@ -163,7 +204,15 @@ public KeyVaultSecret getSecret(String name) {
      *
      * <p><strong>Code sample</strong></p>
      * <p>Gets a specific version of the secret in the key vault. Prints out the details of the returned secret.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.getSecretWithResponse#string-string-Context}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.getSecretWithResponse#string-string-Context -->
+     * <pre>
+     * String secretVersion = &quot;6A385B124DEF4096AF1361A85B16C204&quot;;
+     * KeyVaultSecret secretWithVersion = secretClient.getSecretWithResponse&#40;&quot;secretName&quot;, secretVersion,
+     *     new Context&#40;key2, value2&#41;&#41;.getValue&#40;&#41;;
+     * System.out.printf&#40;&quot;Secret is returned with name %s and value %s%n&quot;,
+     *     secretWithVersion.getName&#40;&#41;, secretWithVersion.getValue&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.getSecretWithResponse#string-string-Context -->
      *
      * @param name The name of the secret, cannot be null
      * @param version The version of the secret to retrieve. If this is an empty string or null, this call is equivalent
@@ -190,7 +239,17 @@ public Response<KeyVaultSecret> getSecretWithResponse(String name, String versio
      * <p><strong>Code sample</strong></p>
      * <p>Gets the latest version of the secret, changes its expiry time, and the updates the secret in the key vault.
      * </p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.updateSecretPropertiesWithResponse#secretProperties-Context}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.updateSecretPropertiesWithResponse#secretProperties-Context -->
+     * <pre>
+     * SecretProperties secretProperties = secretClient.getSecret&#40;&quot;secretName&quot;&#41;.getProperties&#40;&#41;;
+     * secretProperties.setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;60&#41;&#41;;
+     * SecretProperties updatedSecretBase = secretClient.updateSecretPropertiesWithResponse&#40;secretProperties,
+     *     new Context&#40;key2, value2&#41;&#41;.getValue&#40;&#41;;
+     * KeyVaultSecret updatedSecret = secretClient.getSecret&#40;updatedSecretBase.getName&#40;&#41;&#41;;
+     * System.out.printf&#40;&quot;Updated Secret is returned with name %s, value %s and expires %s%n&quot;,
+     *     updatedSecret.getName&#40;&#41;, updatedSecret.getValue&#40;&#41;, updatedSecret.getProperties&#40;&#41;.getExpiresOn&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.updateSecretPropertiesWithResponse#secretProperties-Context -->
      *
      * @param secretProperties The {@link SecretProperties secret properties} object with updated properties.
      * @param context Additional context that is passed through the HTTP pipeline during the service call.
@@ -217,7 +276,16 @@ public Response<SecretProperties> updateSecretPropertiesWithResponse(SecretPrope
      * <p><strong>Code sample</strong></p>
      * <p>Gets the latest version of the secret, changes its expiry time, and the updates the secret in the key
      * vault.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.updateSecretProperties#secretProperties}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.updateSecretProperties#secretProperties -->
+     * <pre>
+     * SecretProperties secretProperties = secretClient.getSecret&#40;&quot;secretName&quot;&#41;.getProperties&#40;&#41;;
+     * secretProperties.setExpiresOn&#40;OffsetDateTime.now&#40;&#41;.plusDays&#40;60&#41;&#41;;
+     * SecretProperties updatedSecretProperties = secretClient.updateSecretProperties&#40;secretProperties&#41;;
+     * KeyVaultSecret updatedSecret = secretClient.getSecret&#40;updatedSecretProperties.getName&#40;&#41;&#41;;
+     * System.out.printf&#40;&quot;Updated Secret is returned with name %s, value %s and expires %s%n&quot;,
+     *     updatedSecret.getName&#40;&#41;, updatedSecret.getValue&#40;&#41;, updatedSecret.getProperties&#40;&#41;.getExpiresOn&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.updateSecretProperties#secretProperties -->
      *
      * @param secretProperties The {@link SecretProperties secret properties} object with updated properties.
      * @return The {@link SecretProperties updated secret}.
@@ -241,7 +309,23 @@ public SecretProperties updateSecretProperties(SecretProperties secretProperties
      * <p><strong>Code sample</strong></p>
      * <p>Deletes the secret from a soft-delete enabled key vault. Prints out the recovery id of the deleted secret
      * returned in the response.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.deleteSecret#String}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.deleteSecret#String -->
+     * <pre>
+     * SyncPoller&lt;DeletedSecret, Void&gt; deleteSecretPoller = secretClient.beginDeleteSecret&#40;&quot;secretName&quot;&#41;;
+     *
+     * &#47;&#47; Deleted Secret is accessible as soon as polling begins.
+     * PollResponse&lt;DeletedSecret&gt; deleteSecretPollResponse = deleteSecretPoller.poll&#40;&#41;;
+     *
+     * &#47;&#47; Deletion date only works for a SoftDelete-enabled Key Vault.
+     * System.out.println&#40;&quot;Deleted Date  %s&quot; + deleteSecretPollResponse.getValue&#40;&#41;
+     *     .getDeletedOn&#40;&#41;.toString&#40;&#41;&#41;;
+     * System.out.printf&#40;&quot;Deleted Secret's Recovery Id %s&quot;, deleteSecretPollResponse.getValue&#40;&#41;
+     *     .getRecoveryId&#40;&#41;&#41;;
+     *
+     * &#47;&#47; Secret is being deleted on server.
+     * deleteSecretPoller.waitForCompletion&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.deleteSecret#String -->
      *
      * @param name The name of the secret to be deleted.
      * @return A {@link SyncPoller} to poll on and retrieve the {@link DeletedSecret deleted secret}.
@@ -260,7 +344,12 @@ public SyncPoller<DeletedSecret, Void> beginDeleteSecret(String name) {
      * <p><strong>Code sample</strong></p>
      * <p>Gets the deleted secret from the key vault <b>enabled for soft-delete</b>. Prints out the details of the
      * deleted secret returned in the response.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.getDeletedSecret#string}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.getDeletedSecret#string -->
+     * <pre>
+     * DeletedSecret deletedSecret = secretClient.getDeletedSecret&#40;&quot;secretName&quot;&#41;;
+     * System.out.printf&#40;&quot;Deleted Secret's Recovery Id %s&quot;, deletedSecret.getRecoveryId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.getDeletedSecret#string -->
      *
      * @param name The name of the deleted secret.
      * @return The {@link DeletedSecret deleted secret}.
@@ -279,7 +368,13 @@ public DeletedSecret getDeletedSecret(String name) {
      * <p><strong>Code sample</strong></p>
      * <p>Gets the deleted secret from the key vault <b>enabled for soft-delete</b>. Prints out the details of the
      * deleted secret returned in the response.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.getDeletedSecretWithResponse#string-Context}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.getDeletedSecretWithResponse#string-Context -->
+     * <pre>
+     * DeletedSecret deletedSecret = secretClient.getDeletedSecretWithResponse&#40;&quot;secretName&quot;,
+     *     new Context&#40;key2, value2&#41;&#41;.getValue&#40;&#41;;
+     * System.out.printf&#40;&quot;Deleted Secret's Recovery Id %s&quot;, deletedSecret.getRecoveryId&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.getDeletedSecretWithResponse#string-Context -->
      *
      * @param name The name of the deleted secret.
      * @param context Additional context that is passed through the HTTP pipeline during the service call.
@@ -301,7 +396,11 @@ public Response<DeletedSecret> getDeletedSecretWithResponse(String name, Context
      * <p>Purges the deleted secret from the key vault enabled for <b>soft-delete</b>. Prints out the status code from
      * the server response.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.secretclient.purgeDeletedSecret#string}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.purgeDeletedSecret#string -->
+     * <pre>
+     * secretClient.purgeDeletedSecret&#40;&quot;secretName&quot;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.purgeDeletedSecret#string -->
      *
      * @param name The name of the secret.
      * @throws ResourceNotFoundException when a secret with {@code name} doesn't exist in the key vault.
@@ -319,7 +418,13 @@ public void purgeDeletedSecret(String name) {
      * <p><strong>Code sample</strong></p>
      * <p>Purges the deleted secret from the key vault enabled for <b>soft-delete</b>. Prints out the status code from
      * the server response.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.purgeDeletedSecretWithResponse#string-Context}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.purgeDeletedSecretWithResponse#string-Context -->
+     * <pre>
+     * Response&lt;Void&gt; purgeResponse = secretClient.purgeDeletedSecretWithResponse&#40;&quot;secretName&quot;,
+     *     new Context&#40;key1, value1&#41;&#41;;
+     * System.out.printf&#40;&quot;Purge Status Code: %d&quot;, purgeResponse.getStatusCode&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.purgeDeletedSecretWithResponse#string-Context -->
      *
      * @param name The name of the secret.
      * @param context Additional context that is passed through the HTTP pipeline during the service call.
@@ -339,7 +444,20 @@ public Response<Void> purgeDeletedSecretWithResponse(String name, Context contex
      * <p><strong>Code sample</strong></p>
      * <p>Recovers the deleted secret from the key vault enabled for <b>soft-delete</b>. Prints out the details of the
      * recovered secret returned in the response.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.recoverDeletedSecret#String}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.recoverDeletedSecret#String -->
+     * <pre>
+     * SyncPoller&lt;KeyVaultSecret, Void&gt; recoverSecretPoller =
+     *     secretClient.beginRecoverDeletedSecret&#40;&quot;deletedSecretName&quot;&#41;;
+     *
+     * &#47;&#47; Deleted Secret can be accessed as soon as polling is in progress.
+     * PollResponse&lt;KeyVaultSecret&gt; recoveredSecretPollResponse = recoverSecretPoller.poll&#40;&#41;;
+     * System.out.println&#40;&quot;Recovered Key Name %s&quot; + recoveredSecretPollResponse.getValue&#40;&#41;.getName&#40;&#41;&#41;;
+     * System.out.printf&#40;&quot;Recovered Key's Id %s&quot;, recoveredSecretPollResponse.getValue&#40;&#41;.getId&#40;&#41;&#41;;
+     *
+     * &#47;&#47; Key is being recovered on server.
+     * recoverSecretPoller.waitForCompletion&#40;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.recoverDeletedSecret#String -->
      *
      * @param name The name of the deleted secret to be recovered.
      * @return A {@link SyncPoller} to poll on and retrieve the {@link KeyVaultSecret recovered secret}.
@@ -358,7 +476,12 @@ public SyncPoller<KeyVaultSecret, Void> beginRecoverDeletedSecret(String name) {
      * <p><strong>Code sample</strong></p>
      * <p>Backs up the secret from the key vault and prints out the length of the secret's backup byte array returned in
      * the response</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.backupSecret#string}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.backupSecret#string -->
+     * <pre>
+     * byte[] secretBackup = secretClient.backupSecret&#40;&quot;secretName&quot;&#41;;
+     * System.out.printf&#40;&quot;Secret's Backup Byte array's length %s&quot;, secretBackup.length&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.backupSecret#string -->
      *
      * @param name The name of the secret.
      * @return A {@link Response} whose {@link Response#getValue() value} contains the backed up secret blob.
@@ -378,7 +501,13 @@ public byte[] backupSecret(String name) {
      * <p>Backs up the secret from the key vault and prints out the length of the secret's backup byte array returned in
      * the response</p>
      *
-     * {@codesnippet com.azure.security.keyvault.secretclient.backupSecretWithResponse#string-Context}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.backupSecretWithResponse#string-Context -->
+     * <pre>
+     * byte[] secretBackup = secretClient.backupSecretWithResponse&#40;&quot;secretName&quot;,
+     *     new Context&#40;key1, value1&#41;&#41;.getValue&#40;&#41;;
+     * System.out.printf&#40;&quot;Secret's Backup Byte array's length %s&quot;, secretBackup.length&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.backupSecretWithResponse#string-Context -->
      *
      * @param name The name of the secret.
      * @param context Additional context that is passed through the HTTP pipeline during the service call.
@@ -399,7 +528,15 @@ public Response<byte[]> backupSecretWithResponse(String name, Context context) {
      * <p>Restores the secret in the key vault from its backup byte array. Prints out the details of the restored secret
      * returned in the response.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.secretclient.restoreSecret#byte}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.restoreSecret#byte -->
+     * <pre>
+     * &#47;&#47; Pass the secret backup byte array of the secret to be restored.
+     * byte[] secretBackupByteArray = &#123;&#125;;
+     * KeyVaultSecret restoredSecret = secretClient.restoreSecretBackup&#40;secretBackupByteArray&#41;;
+     * System.out
+     *     .printf&#40;&quot;Restored Secret with name %s and value %s&quot;, restoredSecret.getName&#40;&#41;, restoredSecret.getValue&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.restoreSecret#byte -->
      *
      * @param backup The backup blob associated with the secret.
      * @return A {@link Response} whose {@link Response#getValue() value} contains the {@link KeyVaultSecret restored secret}.
@@ -418,7 +555,16 @@ public KeyVaultSecret restoreSecretBackup(byte[] backup) {
      * <p>Restores the secret in the key vault from its backup byte array. Prints out the details of the restored secret
      * returned in the response.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.secretclient.restoreSecretWithResponse#byte-Context}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.restoreSecretWithResponse#byte-Context -->
+     * <pre>
+     * &#47;&#47; Pass the secret backup byte array of the secret to be restored.
+     * byte[] secretBackupByteArray = &#123;&#125;;
+     * KeyVaultSecret restoredSecret = secretClient.restoreSecretBackupWithResponse&#40;secretBackupByteArray,
+     *     new Context&#40;key2, value2&#41;&#41;.getValue&#40;&#41;;
+     * System.out
+     *     .printf&#40;&quot;Restored Secret with name %s and value %s&quot;, restoredSecret.getName&#40;&#41;, restoredSecret.getValue&#40;&#41;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.restoreSecretWithResponse#byte-Context -->
      *
      * @param backup The backup blob associated with the secret.
      * @param context Additional context that is passed through the HTTP pipeline during the service call.
@@ -440,14 +586,34 @@ public Response<KeyVaultSecret> restoreSecretBackupWithResponse(byte[] backup, C
      * {@link #getSecret(String, String) getSecret(String, String)}. This gets the {@link KeyVaultSecret secret} and the
      * value of its latest version.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.secretclient.listSecrets}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.listSecrets -->
+     * <pre>
+     * for &#40;SecretProperties secret : secretClient.listPropertiesOfSecrets&#40;&#41;&#41; &#123;
+     *     KeyVaultSecret secretWithValue = secretClient.getSecret&#40;secret.getName&#40;&#41;, secret.getVersion&#40;&#41;&#41;;
+     *     System.out.printf&#40;&quot;Received secret with name %s and value %s&quot;,
+     *         secretWithValue.getName&#40;&#41;, secretWithValue.getValue&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.listSecrets -->
      *
      * <p><strong>Iterate over secrets by page</strong></p>
      * <p>The snippet below loops over each {@link SecretProperties secret} by page and calls
      * {@link #getSecret(String, String) getSecret(String, String)}. This gets the {@link KeyVaultSecret secret} and the
      * value of its latest version.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.secretclient.listSecrets.iterableByPage}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.listSecrets.iterableByPage -->
+     * <pre>
+     * secretClient.listPropertiesOfSecrets&#40;&#41;.iterableByPage&#40;&#41;.forEach&#40;resp -&gt; &#123;
+     *     System.out.printf&#40;&quot;Response headers are %s. Url %s  and status code %d %n&quot;, resp.getHeaders&#40;&#41;,
+     *         resp.getRequest&#40;&#41;.getUrl&#40;&#41;, resp.getStatusCode&#40;&#41;&#41;;
+     *     resp.getItems&#40;&#41;.forEach&#40;value -&gt; &#123;
+     *         KeyVaultSecret secretWithValue = secretClient.getSecret&#40;value.getName&#40;&#41;, value.getVersion&#40;&#41;&#41;;
+     *         System.out.printf&#40;&quot;Received secret with name %s and value %s&quot;,
+     *             secretWithValue.getName&#40;&#41;, secretWithValue.getValue&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.listSecrets.iterableByPage -->
      *
      * @return {@link PagedIterable} of {@link SecretProperties} of all the secrets in the vault. The
      *     {@link SecretProperties} contains all the information about the secret, except its value.
@@ -466,7 +632,15 @@ public PagedIterable<SecretProperties> listPropertiesOfSecrets() {
      * <p>The snippet below loops over each {@link SecretProperties secret} and calls
      * {@link #getSecret(String, String) getSecret(String, String)}. This gets the {@link KeyVaultSecret secret} and the
      * value of its latest version.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.listSecrets#Context}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.listSecrets#Context -->
+     * <pre>
+     * for &#40;SecretProperties secret : secretClient.listPropertiesOfSecrets&#40;new Context&#40;key1, value2&#41;&#41;&#41; &#123;
+     *     KeyVaultSecret secretWithValue = secretClient.getSecret&#40;secret.getName&#40;&#41;, secret.getVersion&#40;&#41;&#41;;
+     *     System.out.printf&#40;&quot;Received secret with name %s and value %s&quot;,
+     *         secretWithValue.getName&#40;&#41;, secretWithValue.getValue&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.listSecrets#Context -->
      *
      * @param context Additional context that is passed through the HTTP pipeline during the service call.
      * @return {@link PagedIterable} of {@link SecretProperties} of all the secrets in the vault. {@link SecretProperties}
@@ -483,7 +657,13 @@ public PagedIterable<SecretProperties> listPropertiesOfSecrets(Context context)
      *
      * <p><strong>Code sample</strong></p>
      * <p>Lists the deleted secrets in the key vault and for each deleted secret prints out its recovery id.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.listDeletedSecrets#Context}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.listDeletedSecrets#Context -->
+     * <pre>
+     * for &#40;DeletedSecret deletedSecret : secretClient.listDeletedSecrets&#40;new Context&#40;key1, value2&#41;&#41;&#41; &#123;
+     *     System.out.printf&#40;&quot;Deleted secret's recovery Id %s&quot;, deletedSecret.getRecoveryId&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.listDeletedSecrets#Context -->
      *
      * @param context Additional context that is passed through the HTTP pipeline during the service call.
      * @return {@link PagedIterable} of all of the {@link DeletedSecret deleted secrets} in the vault.
@@ -499,12 +679,28 @@ public PagedIterable<DeletedSecret> listDeletedSecrets(Context context) {
      *
      * <p><strong>Iterate over secrets</strong></p>
      * <p>Lists the deleted secrets in the key vault and for each deleted secret prints out its recovery id.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.listDeletedSecrets}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.listDeletedSecrets -->
+     * <pre>
+     * for &#40;DeletedSecret deletedSecret : secretClient.listDeletedSecrets&#40;&#41;&#41; &#123;
+     *     System.out.printf&#40;&quot;Deleted secret's recovery Id %s&quot;, deletedSecret.getRecoveryId&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.listDeletedSecrets -->
      *
      * <p><strong>Iterate over secrets by page</strong></p>
      * <p>Iterate over Lists the deleted secrets by page in the key vault and for each deleted secret prints out its
      * recovery id.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.listDeletedSecrets.iterableByPage}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.listDeletedSecrets.iterableByPage -->
+     * <pre>
+     * secretClient.listDeletedSecrets&#40;&#41;.iterableByPage&#40;&#41;.forEach&#40;resp -&gt; &#123;
+     *     System.out.printf&#40;&quot;Got response headers . Url: %s, Status code: %d %n&quot;,
+     *         resp.getRequest&#40;&#41;.getUrl&#40;&#41;, resp.getStatusCode&#40;&#41;&#41;;
+     *     resp.getItems&#40;&#41;.forEach&#40;value -&gt; &#123;
+     *         System.out.printf&#40;&quot;Deleted secret's recovery Id %s&quot;, value.getRecoveryId&#40;&#41;&#41;;
+     *     &#125;&#41;;
+     * &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.listDeletedSecrets.iterableByPage -->
      *
      * @return {@link PagedIterable} of all of the {@link DeletedSecret deleted secrets} in the vault.
      */
@@ -521,7 +717,15 @@ public PagedIterable<DeletedSecret> listDeletedSecrets() {
      * <p><strong>Code sample</strong></p>
      * <p>The sample below fetches all versions of the given secret. For each secret version retrieved, makes a call
      * to {@link #getSecret(String, String) getSecret(String, String)} to get the version's value, and then prints it out.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.listSecretVersions#string}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.listSecretVersions#string -->
+     * <pre>
+     * for &#40;SecretProperties secret : secretClient.listPropertiesOfSecretVersions&#40;&quot;secretName&quot;&#41;&#41; &#123;
+     *     KeyVaultSecret secretWithValue = secretClient.getSecret&#40;secret.getName&#40;&#41;, secret.getVersion&#40;&#41;&#41;;
+     *     System.out.printf&#40;&quot;Received secret's version with name %s and value %s&quot;,
+     *         secretWithValue.getName&#40;&#41;, secretWithValue.getValue&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.listSecretVersions#string -->
      *
      * @param name The name of the secret.
      * @return {@link PagedIterable} of {@link SecretProperties} of all the versions of the specified secret in the vault.
@@ -542,14 +746,36 @@ public PagedIterable<SecretProperties> listPropertiesOfSecretVersions(String nam
      * <p><strong>Code sample</strong></p>
      * <p>The sample below fetches all versions of the given secret. For each secret version retrieved, makes a call
      * to {@link #getSecret(String, String) getSecret(String, String)} to get the version's value, and then prints it out.</p>
-     * {@codesnippet com.azure.security.keyvault.secretclient.listSecretVersions#string-Context}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.listSecretVersions#string-Context -->
+     * <pre>
+     * for &#40;SecretProperties secret : secretClient
+     *     .listPropertiesOfSecretVersions&#40;&quot;secretName&quot;, new Context&#40;key1, value2&#41;&#41;&#41; &#123;
+     *     KeyVaultSecret secretWithValue = secretClient.getSecret&#40;secret.getName&#40;&#41;, secret.getVersion&#40;&#41;&#41;;
+     *     System.out.printf&#40;&quot;Received secret's version with name %s and value %s&quot;,
+     *         secretWithValue.getName&#40;&#41;, secretWithValue.getValue&#40;&#41;&#41;;
+     * &#125;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.listSecretVersions#string-Context -->
      *
      * <p><strong>Iterate over secret versions by page</strong></p>
      * <p>The sample below iterates over each {@link SecretProperties secret} by each page and calls
      * {@link SecretClient#getSecret(String, String)}. This will return the {@link KeyVaultSecret secret} with the
      * corresponding version's value.</p>
      *
-     * {@codesnippet com.azure.security.keyvault.secretclient.listSecretVersions#string-Context-iterableByPage}
+     * <!-- src_embed com.azure.security.keyvault.secretclient.listSecretVersions#string-Context-iterableByPage -->
+     * <pre>
+     * secretClient.listPropertiesOfSecretVersions&#40;&quot;secretName&quot;, new Context&#40;key1, value2&#41;&#41;
+     *             .iterableByPage&#40;&#41;.forEach&#40;resp -&gt; &#123;
+     *                 System.out.printf&#40;&quot;Got response headers . Url: %s, Status code: %d %n&quot;,
+     *                     resp.getRequest&#40;&#41;.getUrl&#40;&#41;, resp.getStatusCode&#40;&#41;&#41;;
+     *                 resp.getItems&#40;&#41;.forEach&#40;value -&gt; &#123;
+     *                     KeyVaultSecret secretWithValue = secretClient.getSecret&#40;value.getName&#40;&#41;, value.getVersion&#40;&#41;&#41;;
+     *                     System.out.printf&#40;&quot;Received secret's version with name %s and value %s&quot;,
+     *                         secretWithValue.getName&#40;&#41;, secretWithValue.getValue&#40;&#41;&#41;;
+     *                 &#125;&#41;;
+     *             &#125;&#41;;
+     * </pre>
+     * <!-- end com.azure.security.keyvault.secretclient.listSecretVersions#string-Context-iterableByPage -->
      *
      * @param name The name of the secret.
      * @param context Additional context that is passed through the HTTP pipeline during the service call.
diff --git a/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretClientBuilder.java b/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretClientBuilder.java
index dff09bd24870c..b25c735b9bde7 100644
--- a/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretClientBuilder.java
+++ b/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretClientBuilder.java
@@ -42,21 +42,56 @@
  * <p> The minimal configuration options required by {@link SecretClientBuilder secretClientBuilder} to build
  * {@link SecretAsyncClient} are {@link String vaultUrl} and {@link TokenCredential credential}. </p>
  *
- * {@codesnippet com.azure.security.keyvault.secrets.async.secretclient.construct}
+ * <!-- src_embed com.azure.security.keyvault.secrets.async.secretclient.construct -->
+ * <pre>
+ * SecretAsyncClient secretAsyncClient = new SecretClientBuilder&#40;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.vault.azure.net&#47;&quot;&#41;
+ *     .httpLogOptions&#40;new HttpLogOptions&#40;&#41;.setLogLevel&#40;HttpLogDetailLevel.BODY_AND_HEADERS&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.secrets.async.secretclient.construct -->
  *
  * <p><strong>Samples to construct the sync client</strong></p>
- * {@codesnippet com.azure.security.keyvault.secretclient.sync.construct}
+ * <!-- src_embed com.azure.security.keyvault.secretclient.sync.construct -->
+ * <pre>
+ * SecretClient secretClient = new SecretClientBuilder&#40;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.vault.azure.net&#47;&quot;&#41;
+ *     .httpLogOptions&#40;new HttpLogOptions&#40;&#41;.setLogLevel&#40;HttpLogDetailLevel.BODY_AND_HEADERS&#41;&#41;
+ *     .buildClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.secretclient.sync.construct -->
  *
  * <p>The {@link HttpLogDetailLevel log detail level}, multiple custom {@link HttpLoggingPolicy policies} and custom
  * {@link HttpClient http client} can be optionally configured in the {@link SecretClientBuilder}.</p>
  *
- * {@codesnippet com.azure.security.keyvault.secrets.async.secretclient.withhttpclient.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.secrets.async.secretclient.withhttpclient.instantiation -->
+ * <pre>
+ * SecretAsyncClient secretAsyncClient = new SecretClientBuilder&#40;&#41;
+ *     .httpLogOptions&#40;new HttpLogOptions&#40;&#41;.setLogLevel&#40;HttpLogDetailLevel.BODY_AND_HEADERS&#41;&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.azure.net&#47;&quot;&#41;
+ *     .credential&#40;new DefaultAzureCredentialBuilder&#40;&#41;.build&#40;&#41;&#41;
+ *     .httpClient&#40;HttpClient.createDefault&#40;&#41;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.secrets.async.secretclient.withhttpclient.instantiation -->
  *
  * <p>Alternatively, custom {@link HttpPipeline http pipeline} with custom {@link HttpPipelinePolicy} policies and
  * {@link String vaultUrl}
  * can be specified. It provides finer control over the construction of {@link SecretAsyncClient client}</p>
  *
- * {@codesnippet com.azure.security.keyvault.secrets.async.secretclient.pipeline.instantiation}
+ * <!-- src_embed com.azure.security.keyvault.secrets.async.secretclient.pipeline.instantiation -->
+ * <pre>
+ * HttpPipeline pipeline = new HttpPipelineBuilder&#40;&#41;
+ *     .policies&#40;new KeyVaultCredentialPolicy&#40;credential&#41;, new RetryPolicy&#40;&#41;&#41;
+ *     .build&#40;&#41;;
+ * SecretAsyncClient secretAsyncClient = new SecretClientBuilder&#40;&#41;
+ *     .pipeline&#40;pipeline&#41;
+ *     .vaultUrl&#40;&quot;https:&#47;&#47;myvault.azure.net&#47;&quot;&#41;
+ *     .buildAsyncClient&#40;&#41;;
+ * </pre>
+ * <!-- end com.azure.security.keyvault.secrets.async.secretclient.pipeline.instantiation -->
  *
  * @see SecretClient
  * @see SecretAsyncClient
diff --git a/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretServiceVersion.java b/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretServiceVersion.java
index 3e95d7e96a13b..ee46d3198a984 100644
--- a/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretServiceVersion.java
+++ b/sdk/keyvault/azure-security-keyvault-secrets/src/main/java/com/azure/security/keyvault/secrets/SecretServiceVersion.java
@@ -9,9 +9,24 @@
  * The versions of Azure Key Vault Secret supported by this client library.
  */
 public enum SecretServiceVersion implements ServiceVersion {
+    /**
+     * Service version {@code 7.0}.
+     */
     V7_0("7.0"),
+
+    /**
+     * Service version {@code 7.1}.
+     */
     V7_1("7.1"),
+
+    /**
+     * Service version {@code 7.2}.
+     */
     V7_2("7.2"),
+
+    /**
+     * Service version {@code 7.3-preview}.
+     */
     V7_3_PREVIEW("7.3-preview");
 
     private final String version;
diff --git a/sdk/keyvault/azure-security-keyvault-secrets/src/samples/java/com/azure/security/keyvault/secrets/ReadmeSamples.java b/sdk/keyvault/azure-security-keyvault-secrets/src/samples/java/com/azure/security/keyvault/secrets/ReadmeSamples.java
new file mode 100644
index 0000000000000..0926105b75545
--- /dev/null
+++ b/sdk/keyvault/azure-security-keyvault-secrets/src/samples/java/com/azure/security/keyvault/secrets/ReadmeSamples.java
@@ -0,0 +1,149 @@
+// Copyright (c) Microsoft Corporation. All rights reserved.
+// Licensed under the MIT License.
+
+package com.azure.security.keyvault.secrets;
+
+import com.azure.core.exception.ResourceNotFoundException;
+import com.azure.core.util.polling.PollResponse;
+import com.azure.core.util.polling.SyncPoller;
+import com.azure.identity.DefaultAzureCredentialBuilder;
+import com.azure.security.keyvault.secrets.models.DeletedSecret;
+import com.azure.security.keyvault.secrets.models.KeyVaultSecret;
+import com.azure.security.keyvault.secrets.models.SecretProperties;
+
+import java.time.OffsetDateTime;
+
+@SuppressWarnings("unused")
+public class ReadmeSamples {
+    private final SecretClient secretClient = new SecretClientBuilder()
+        .vaultUrl("<your-key-vault-url>")
+        .credential(new DefaultAzureCredentialBuilder().build())
+        .buildClient();
+    private final SecretAsyncClient secretAsyncClient = new SecretClientBuilder()
+        .vaultUrl("<your-key-vault-url>")
+        .credential(new DefaultAzureCredentialBuilder().build())
+        .buildAsyncClient();
+
+    public void createSecretClient() {
+        // BEGIN: readme-sample-createSecretClient
+        SecretClient secretClient = new SecretClientBuilder()
+            .vaultUrl("<your-key-vault-url>")
+            .credential(new DefaultAzureCredentialBuilder().build())
+            .buildClient();
+        // END: readme-sample-createSecretClient
+    }
+
+    public void createSecret() {
+        // BEGIN: readme-sample-createSecret
+        KeyVaultSecret secret = secretClient.setSecret("<secret-name>", "<secret-value>");
+        System.out.printf("Secret created with name \"%s\" and value \"%s\"%n", secret.getName(), secret.getValue());
+        // END: readme-sample-createSecret
+    }
+
+    public void retrieveSecret() {
+        // BEGIN: readme-sample-retrieveSecret
+        KeyVaultSecret secret = secretClient.getSecret("<secret-name>");
+        System.out.printf("Retrieved secret with name \"%s\" and value \"%s\"%n", secret.getName(), secret.getValue());
+        // END: readme-sample-retrieveSecret
+    }
+
+    public void updateSecret() {
+        // BEGIN: readme-sample-updateSecret
+        // Get the secret to update.
+        KeyVaultSecret secret = secretClient.getSecret("<secret-name>");
+        // Update the expiry time of the secret.
+        secret.getProperties().setExpiresOn(OffsetDateTime.now().plusDays(30));
+        SecretProperties updatedSecretProperties = secretClient.updateSecretProperties(secret.getProperties());
+        System.out.printf("Secret's updated expiry time: %s%n", updatedSecretProperties.getExpiresOn());
+        // END: readme-sample-updateSecret
+    }
+
+    public void deleteSecret() {
+        // BEGIN: readme-sample-deleteSecret
+        SyncPoller<DeletedSecret, Void> deletedSecretPoller = secretClient.beginDeleteSecret("<secret-name>");
+
+        // Deleted secret is accessible as soon as polling begins.
+        PollResponse<DeletedSecret> deletedSecretPollResponse = deletedSecretPoller.poll();
+
+        // Deletion date only works for a SoftDelete-enabled Key Vault.
+        System.out.printf("Deletion date: %s%n", deletedSecretPollResponse.getValue().getDeletedOn());
+
+        // Secret is being deleted on server.
+        deletedSecretPoller.waitForCompletion();
+        // END: readme-sample-deleteSecret
+    }
+
+    public void listSecrets() {
+        // BEGIN: readme-sample-listSecrets
+        // List operations don't return the secrets with value information. So, for each returned secret we call getSecret to
+        // get the secret with its value information.
+        for (SecretProperties secretProperties : secretClient.listPropertiesOfSecrets()) {
+            KeyVaultSecret secretWithValue = secretClient.getSecret(secretProperties.getName(), secretProperties.getVersion());
+            System.out.printf("Retrieved secret with name \"%s\" and value \"%s\"%n", secretWithValue.getName(),
+                secretWithValue.getValue());
+        }
+        // END: readme-sample-listSecrets
+    }
+
+    public void createSecretAsync() {
+        // BEGIN: readme-sample-createSecretAsync
+        secretAsyncClient.setSecret("<secret-name>", "<secret-value>")
+            .subscribe(secret -> System.out.printf("Created secret with name \"%s\" and value \"%s\"%n",
+                secret.getName(), secret.getValue()));
+        // END: readme-sample-createSecretAsync
+    }
+
+    public void retrieveSecretAsync() {
+        // BEGIN: readme-sample-retrieveSecretAsync
+        secretAsyncClient.getSecret("<secret-name>")
+            .subscribe(secret -> System.out.printf("Retrieved secret with name \"%s\" and value \"%s\"%n",
+                secret.getName(), secret.getValue()));
+        // END: readme-sample-retrieveSecretAsync
+    }
+
+    public void updateSecretAsync() {
+        // BEGIN: readme-sample-updateSecretAsync
+        secretAsyncClient.getSecret("<secret-name>")
+            .flatMap(secret -> {
+                // Update the expiry time of the secret.
+                secret.getProperties().setExpiresOn(OffsetDateTime.now().plusDays(50));
+                return secretAsyncClient.updateSecretProperties(secret.getProperties());
+            }).subscribe(updatedSecretProperties ->
+                System.out.printf("Secret's updated expiry time: %s%n", updatedSecretProperties.getExpiresOn()));
+        // END: readme-sample-updateSecretAsync
+    }
+
+    public void deleteSecretAsync() {
+        // BEGIN: readme-sample-deleteSecretAsync
+        secretAsyncClient.beginDeleteSecret("<secret-name>")
+            .subscribe(pollResponse -> {
+                System.out.printf("Deletion status: %s%n", pollResponse.getStatus());
+                System.out.printf("Deleted secret name: %s%n", pollResponse.getValue().getName());
+                System.out.printf("Deleted secret value: %s%n", pollResponse.getValue().getValue());
+            });
+        // END: readme-sample-deleteSecretAsync
+    }
+
+    public void listSecretsAsync() {
+        // BEGIN: readme-sample-listSecretsAsync
+        // The List secrets operation returns secrets without their value, so for each secret returned we call `getSecret`
+        // to get its value as well.
+        secretAsyncClient.listPropertiesOfSecrets()
+            .flatMap(secretProperties ->
+                secretAsyncClient.getSecret(secretProperties.getName(), secretProperties.getVersion()))
+            .subscribe(secretResponse ->
+                System.out.printf("Retrieved secret with name \"%s\" and value \"%s\"%n", secretResponse.getName(),
+                    secretResponse.getValue()));
+        // END: readme-sample-listSecretsAsync
+    }
+
+    public void troubleshooting() {
+        // BEGIN: readme-sample-troubleshooting
+        try {
+            secretClient.getSecret("<deleted-secret-name>");
+        } catch (ResourceNotFoundException e) {
+            System.out.println(e.getMessage());
+        }
+        // END: readme-sample-troubleshooting
+    }
+}
diff --git a/sdk/keyvault/azure-security-test-keyvault-jca/pom.xml b/sdk/keyvault/azure-security-test-keyvault-jca/pom.xml
index d6777e47c4f91..0730479c5e1c5 100644
--- a/sdk/keyvault/azure-security-test-keyvault-jca/pom.xml
+++ b/sdk/keyvault/azure-security-test-keyvault-jca/pom.xml
@@ -17,6 +17,12 @@
   <name>JCA Provider for Azure Key Vault Test</name>
   <description>The Java Crypto Architecture (JCA) Provider for Azure Key Vault Test</description>
 
+  <properties>
+    <codesnippet.skip>false</codesnippet.skip>
+    <javadocDoclet></javadocDoclet>
+    <javadocDocletOptions></javadocDocletOptions>
+  </properties>
+
   <dependencies>
     <dependency>
       <groupId>com.azure</groupId>