Please make soft delete a default feature
Currently soft delete is not a default feature. It would be great if this can be made a default feature to protect against loss of a complete keyvault or objects inside (keys,secrets,certs).
We learned about this feature only after getting hit by an accidental keyvault deletion.
We can save others who are not aware of this feature and may run into similar scenario.
Seema Bansal commented
Soft-delete is now by-default 'enabled' attribute for any new vault that is being created.
Azure Key Vault Team
Agree on this one. Just created a lock for this very reason, since I realized that the deletion of our vault would result in MAJOR issues. It's kind of a critical resource, used by multiple others and yeah, the consequences would be of integalactic proportions.
Actually it reminds me of this: https://www.youtube.com/watch?v=TGwZVGKG30s