课程: Microsoft Azure Security Technology (AZ-500) Cert Prep by Microsoft Press

免费学习该课程!

今天就开通帐号,24,600 门业界名师课程任您挑!

Manage the lifecycle for storage account access keys

Manage the lifecycle for storage account access keys - Azure教程

课程: Microsoft Azure Security Technology (AZ-500) Cert Prep by Microsoft Press

开始一个月试用 购买团队方案

Manage the lifecycle for storage account access keys

- [Instructor] I mean, if you do REST API development, you know the importance of the access key. Similar idea. You've got two access keys, key one and key two. And the best practice is to rotate them regularly to enhance security. It's not just rotate. You've got key one and key two, and you're always going to be calling those keys programmatically I would hope. So you'll know key one or key two, but it's about changing or regenerating those keys. And you can actually create a managed storage account where Azure Key Vault is not only storing key one and key two, but is rotating them on your schedule. And then you can fetch the key when you need to; very conveniently indeed. So here again, the reminder to use Key Vault to not only manage but audit those access keys. That's a really good point. Every key you store in Key Vault is an individually traceable resource. Key one and key two on your storage account, yes, but it takes more work and layers to unpack in order to get there. And…

内容