Authentication

Not all of the keys in Non-RBAC key vault have an expiration date

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Expiration date is not set for all keys in Non-RBAC keyvault. It is recommended that keys be rotated in the key vault and set an explicit expiration date.
  • Recommended Mitigation

    Set expiration date for all the keys as follows: Go to Key vaults->go to the relevant key vault. Under 'Settings' column->Keys. Then, go to the relevant Key ,check 'Set expiration date' checkbox and determine the wanted date.