Do Enabling Customer Managed Keys will have any effect while accessing data using SAS keys?

Sachin Vettiyattil-FT 41

We are trying to implement customer managed keys in storage accounts. So i do understand that we might have to make few code changes while connecting to Storage account as mentioned in the article https://www.serverlessnotes.com/docs/using-customer-managed-keys-for-encrypting-azure-storage-account
What i would further like to understand is, will this effect when i try connecting to the storage account using a SAS Key. Which I would be in most cases. Do we an documentation which address this?

Sumarigo-MSFT 47,371 Reputation points Microsoft Employee

2023-07-21T07:28:45.44+00:00

@Sachin Vettiyattil-FT Can you please elaborate bit more on your query?

You can connect the Azure Storage account using the SAS token, until it's regenerated or time elapsed (When you generate a SAS token, you define the permissions (e.g., read, write, delete) and the time window during which the token is valid. The token is then used by clients to access the storage resources with the specified permissions.)
Sachin Vettiyattil-FT 41 Reputation points

2023-07-21T08:31:12.1766667+00:00

@Sumarigo-MSFT What I am trying to understand here if i have enabled customer managed key encryption, and from code if i try generating sas token and then token is used by clients to access the storage resources will i need to make any code adjustments.
Sumarigo-MSFT 47,371 Reputation points Microsoft Employee

2023-07-24T11:15:00.88+00:00

@Sachin Vettiyattil-FT Just checking in to see if the below answer helped. If this answers your query, do click "Accept the answer” for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.
Sumarigo-MSFT 47,371 Reputation points Microsoft Employee

2023-08-02T14:49:33.7133333+00:00

@Sachin Vettiyattil-FT Just checking in to see if the below answer helped. If this answers your query, do click "Accept the answer” for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.

1 answer

Sumarigo-MSFT 47,371 Reputation points Microsoft Employee

2023-07-21T09:57:49.0633333+00:00

What I am trying to understand here if I have enabled customer managed key encryption, and from code if I try generating sas token and then token is used by clients to access the storage resources will I need to make any code adjustments. No, need to make any changes in the code, it will work in SAS token. I was able to repro the issue.

If you still any question, l would to like to connect offline

Please let us know if you have any further queries. I’m happy to assist you further.

Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.
Please sign in to rate this answer.

0 comments No comments
Sign in to comment

Use comments to ask for clarification, additional information, or improvements to the question.

Share via

Do Enabling Customer Managed Keys will have any effect while accessing data using SAS keys?

1 answer

Your answer