Note: To complete this lab, you will need an Azure subscription. in which you have administrative access.
Deleting a key vault without soft delete enabled permanently deletes all secrets, keys, and certificates stored in the key vault. Accidental deletion of a key vault can lead to permanent data loss. Soft delete allows you to recover an accidentally deleted key vault for a configurable retention period.
Skilling tasks
- Verify if soft delete is enabled on a key vault and enable soft delete.
Exercise instructions
Verify if soft delete is enabled on a key vault and enable soft delete
-
Start a browser session and sign-in to the Azure portal menu..
-
In the search box at the top of the portal, enter key vaults. Select Key vaults in the search results.
-
Browse to the key vault you previously created.
-
From the Settings blade, select Properties.
-
Verify if the radio button next to soft-delete is set to Enable purge protection (enforce a mandatory retention period for deleted vaults and vault objects).
-
If soft-delete is not enabled on the key vault, click the Enable purge protection (enforce a mandatory retention period for deleted vaults and vault objects) radio button to enable soft delete and click Save.
Results: You have successfully enabled soft delete, ensuring that deleted resources are retained for 90 days (by default) and can be recovered, effectively undoing the deletion through the Azure portal.