Key Vault accidental purge prevention is disabled Affecting Key Vault service in Azure

Snyk CCSS

Data / Restoration

Is your enviroment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Frameworks

CIS-Azure CSA-CCM ISO-27001 SOC-2

Snyk ID SNYK-CC-00556
credit Snyk Research Team

Report a new misconfiguration Found a mistake?

Description

Accidentally purged key material will not be recoverable.

How to fix?

Set properties.enablePurgeProtection attribute to true.

ARM

vaults

Terraform

azurerm_key_vault

References

Azure Key Vault soft-delete overview