Key Vault purge protection is disabled Affecting Key Vault service in Azure

Snyk CCSS

Data / Restoration

Is your enviroment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Frameworks

Snyk ID SNYK-CC-00596
credit Snyk Research Team

Report a new misconfiguration Found a mistake?

Description

Accidentally purged vaults and vault items are not recoverable and might lead to data loss.

How to fix?

Set properties.enablePurgeProtection to true.

ARM

vaults

Terraform

azurerm_key_vault

References

Azure Key Vault soft-delete overview