Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Previously, key-based access was required for cache storage accounts used by Azure Site Recovery. Azure Site Recovery now supports cache accounts with key-based authentication disabled. This article explains how to turn off key-based access without disrupting replication.
Prerequisites
Before proceeding, ensure the following:
Turn off key-based access on storage accounts
For higher security of Azure storage, we recommend you to turn off of key-based authentication.
Scenario 1
If the Recovery Services Vault already has a managed identity enabled, follow the steps in the Related Content.
Scenario 2
If the vault lacked a managed identity when virtual machines were initially protected, you can add it afterward. Once prerequisites are met, you can safely disable key-based access on the cache account.
Note
Replication continues without interruption if prerequisites are completed before disabling key-based access. Don't disable and re-enable protection for existing VMs or servers after completing prerequisites.