Professional Documents
Culture Documents
Storage Account Keys
Storage Account Keys
In Azure Storage accounts, shared keys are called storage account keys. Azure creates two of these keys
(primary and secondary) for each storage account you create. The keys give access to everything in the
account.
You'll find the storage account keys in the Azure portal view of the storage account. Just select Settings >
Access keys.
Use access keys to authenticate your applications when making requests to this Azure storage account.
Store your access keys securely - for example, using Azure Key Vault - and don't share them. We
recommend regenerating your access keys regularly. You are provided two access keys so that you can
maintain connections using one key while regenerating the other.
When you regenerate your access keys, you must update any Azure resources and applications that
access this storage account to use the new keys. This action will not interrupt access to disks from your
virtual machines.
The storage account has only two keys, and they provide full access to the account. Because these keys
are powerful, use them only with trusted in-house applications that you control completely.
If the keys are compromised, change the key values in the Azure portal. Here are several reasons to
regenerate your storage account keys:
To refresh keys:
Note: - After you refresh keys, any client that attempts to use the old key value will be refused. Make
sure you identify all clients that use the shared key, and update them to keep them operational.