Not all of the keys in Non-RBAC key vault have an expiration date

Authentication

Not all of the keys in Non-RBAC key vault have an expiration date

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

Azure CIS
CCM-CSA
cis_8
Data Security Posture Management (DSPM) Best Practices
ISO/IEC 27001
Microsoft Cloud Security Benchmark
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53

Description

Expiration date is not set for all keys in Non-RBAC keyvault. It is recommended that keys be rotated in the key vault and set an explicit expiration date.

Recommended Mitigation

Set expiration date for all the keys as follows: Go to Key vaults->go to the relevant key vault. Under 'Settings' column->Keys. Then, go to the relevant Key ,check 'Set expiration date' checkbox and determine the wanted date.

Not all of the keys in Non-RBAC key vault have an expiration date

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS