π Azure Key Vault - object.extracts.yaml
- Contextual name: π object.extracts.yaml
- ID:
/types/CA10__CaAzureKeyVault__c/object.extracts.yaml - Located in: π Azure Key Vault
Used Inβ
| Logic | Policy | Flags |
|---|---|---|
| π§ prod.logic.yaml π’ | π Azure Key Vault Role Based Access Control is not enabled π’ | π’ x3 |
| π§ prod.logic.yaml π’ | π Azure Key Vault Soft Delete and Purge Protection functions are not enabled π’ | π’ x3 |
| π§ prod.logic.yaml π’ | π Azure Non-RBAC Key Vault stores Keys without expiration date π’ | π’ x3 |
| π§ prod.logic.yaml π’ | π Azure Non-RBAC Key Vault stores Secrets without expiration date π’ | π’ x3 |
| π§ prod.logic.yaml π’ | π Azure RBAC Key Vault stores Keys without expiration date π’ | π’ x3 |
| π§ prod.logic.yaml π’ | π Azure RBAC Key Vault stores Secrets without expiration date π’ | π’ x3 |
Contentβ
---
extracts:
# Values: Enabled, Disabled. Not Nullable. Can't have no access, retrieved via Microsoft.KeyVault/vaults
- name: "CA10__rbacAuthorization__c"
value:
FIELD:
path: "CA10__rbacAuthorization__c"
undeterminedIf:
isEmpty: "Corrupted data. Key Vault RBAC Authorization cannot be empty."
# Values: Enabled, null. Nullable. Can't have no access, retrieved via Microsoft.KeyVault/vaults
- name: "CA10__purgeProtection__c"
value:
FIELD:
path: "CA10__purgeProtection__c"
# Values: Enabled, Disabled. Not Nullable. Can't have no access, retrieved via Microsoft.KeyVault/vaults
- name: "CA10__softDelete__c"
value:
FIELD:
path: "CA10__softDelete__c"
undeterminedIf:
isEmpty: "Corrupted data. Soft Delete function cannot be empty."