azurerm_keyvault_features_check

Severity: Warning

Example

provider "azurerm" {
  alias = "prod"
  features {
    key_vault {
      purge_soft_delete_on_destroy = false
      recover_soft_deleted_key_vaults = false
    }
  }
}

Why

Setting purge_soft_delete_on_destroy and recover_soft_deleted_key_vaults to true ensures that deleted Key Vaults are securely purged and recoverable, preventing unintended data loss while adhering to compliance and security policies.

How to Fix

provider "azurerm" {
  alias = "prod"
  features {
    key_vault {
      purge_soft_delete_on_destroy = true
      recover_soft_deleted_key_vaults = true
    }
  }
}

How to disable

rule "azurerm_keyvault_features_check" {
  enabled = false
}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

azurerm_keyvault_features_check.md

azurerm_keyvault_features_check.md

azurerm_keyvault_features_check

Example

Why

How to Fix

How to disable

Files

azurerm_keyvault_features_check.md

Latest commit

History

azurerm_keyvault_features_check.md

File metadata and controls

azurerm_keyvault_features_check

Example

Why

How to Fix

How to disable