The secret keys, secrets and certificate are crucial for any application stored inside the Azure KeyVault which might be corrupted, mis-configured, deleted or any damages can impact the availability of the applications running and using Azure KeyVault services from Azure.
Microsoft Azure KeyVault automatically provides and help in maintaining the availability and prevent any type of data loss.
Azure KeyVault maintains availability in disaster situations and will automatically failover requests to the paired region without any intervention from user.
During the automated failover process the Azure KeyVault services will be available in read-only mode. The below operations are supported in the read-only mode:
- List certificates
- Get certificates
- List secrets
- Get secrets
- List keys
- Get (properties of) keys
- Encrypt
- Decrypt
- Wrap
- Unwrap
- Verify
- Sign
- Backup
To get more details please refer to the Microsoft Azure KeyVault disaster recovery guidelines here.