Home › Forums › Azure › AZ-500 – Securing storage account › Reply To: AZ-500 – Securing storage account
-
Hi André,
In this case, rotating both the primary and secondary keys is recommended for security reasons. Even though only one key was compromised, rotating both keys ensures that no unauthorized access remains possible. This approach invalidates both keys and makes the account fully secure.
While rotating both keys does require updating all applications, it simplifies the process by ensuring that both keys are refreshed at once. This can help minimize the time the compromised key is still in use and reduce any potential gaps in security. Hence, rotating both keys meets the goal of securing the account while addressing the compromise immediately.
Best regards,
Irene @ Tutorials Dojo