It is important to rotate your passwords (such as tokens, client secrets, or credentials) on a regular basis—both inside and outside Commvault SaaS.
In Commvault SaaS, most passwords are stored in the credential vault using different account types. For some workloads, passwords may also be stored directly in the connection settings of the workload.
Regularly updating these passwords helps reduce the risk of unauthorized access to sensitive systems and data.
This section provides instructions for workloads that support storing credentials in the credential vault, as well as those that do not.
View Most Recent Rotation Time
To determine when the passwords were last rotated, you can use the following steps:
-
From the Command Center, go to Monitoring.
-
Select Security IQ > View your security posture.
-
Under Authentication and Authorization, in the Password rotation policy section, in the Remarks column, click Click here.
-
To view the passwords that haven't been rotated recently, in the Credential Vault, review the credential sets under Credential Name by sorting on the Last Modified Time column.
Further actions can either be taken using the Action button or by referring to the steps further mentioned in this section.