Not all of the secrets in Non-RBAC key vault have an expiration date

Risk Level

Informational (4)

Compliance Frameworks


Expiration date is not set for all secrets in Non-RBAC key vault. It is recommended that secrets be rotated in the key vault and set an explicit expiration date.
  • Recommended Mitigation

    Set expiration date for all the secrets as follows: Go to Key vaults->go to the relevant key vault. Under 'Settings' column->Secrets. Then, go to the relevant secret ,check 'Set expiration date' checkbox and determine the wanted date.