{"id":"keyvault-rbac-preferred-over-legacy-access-policies","text":"Azure RBAC is preferred over legacy vault access policies for Key Vault; legacy policies have known vulnerabilities and lack PIM support.","truth_value":"IN","source":"entries/2026/03/11/keyvault-security.md","source_url":"","source_hash":"95dc2cd1abc3fa8c","justifications":[],"dependents":[],"metadata":{},"explanation":{"steps":[{"node":"keyvault-rbac-preferred-over-legacy-access-policies","truth_value":"IN","reason":"premise"}]}}