Azure存储密钥管理 [英] Azure Storage Key management
问题描述
存储/管理Azure存储密钥的正确方法是什么? 我不想把钥匙放在身边。 是否存在(或将会)存储密钥的规定方式,可能作为Windows凭据管理器的一部分? 或者,作为用户个人资料的部分
以某种方式?
What is the correct way to store/manage Azure Storage key(s)? I don't want to have the key just lying around. Is there (or will there be) a prescribed way to storage a key, perhaps as part of the Windows Credentials manager? Or, as part of the user's profile somehow?
Azure存储提供2个密钥。 我理解通过拥有两个密钥,这为管理员提供了一次一个地更改密钥的机制 - 无需阻止访问。 所以,我的问题的第二部分是,当管理员想要更改密钥时,
会将密钥推送到用户的配置文件等吗?
Azure Storage provides 2 keys. I understand that by having two keys, this gives an admin the mechanism to change the keys -- one at a time -- without blocking access. So, the second part of my question is, when an admin wants the keys to change, would the key just be pushed to user's profile, etc?
可能有人请解释存储密钥的生命周期?
Could someone please explain a Storage key's life-cycle?
非常感谢,
Sean
Sean
推荐答案
Sean,
感谢您提出这些问题!实际上,我不知道密钥生命周期的答案。现在它已被提出,我也很好奇。
Thanks for these questions! I don't know the answer to the key's life-cycle, actually. Now that it's been raised, I'm curious, too.
关于密钥的保护,我相信使用
Windows Data Protection API 是标准答案。卡萨布兰卡没有参与其中。
Regarding protection of keys, I believe using the Windows Data Protection API is the standard answer. Casablanca does not get involved.
这就是说,这是一个最好在
Azure存储论坛。我希望你能在那里得到更广泛的观众。
That said, this is a question that may best be asked on the Azure Storage Forum. I expect that you get a wider audience for your question there.
Niklas
这篇关于Azure存储密钥管理的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
