This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 74%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
Hi,
I created an SA with version-level immutability enabled.
I created a new container and uploaded a file.
Created an immutable policy with 1-day retention on the SA. The policy was left unlocked.
An hour later I deleted the unlocked policy.
Any attempt some hours later to delete the blob, container or SA results in being denied due to immutable policy being enforced.
But there is no policy in place any more.
Why wouldn't I be able to delete the data in the SA?
Hi,
To be able to delete you need to delete the policy on the individual blob(s) you uploaded using the context menu, next delete the blob(s), then finally you can delete the storage account.
Please click Accept Answer if the above was useful.
Thanks.
-TP
Thank you. I didn't realize the policy would need to be removed at the blob level as well as at the SA scope.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 57.99999999999999%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERH%3C/text%3E%3C/svg%3E)
mij2020 Welcome to Microsoft Q&A, Thank you for posting your here!
The protection afforded by an immutability policy depends on the scope of the immutability policy and, in the case of a time-based retention policy, whether it is locked or unlocked and whether it is active or expired.
As per the above you have to wait for the retention policy to expire only then you will be able to delete the blob, container and Storage.
Reference Article: https://learn.microsoft.com/en-us/azure/storage/blobs/immutable-storage-overview#summary-of-immutability-scenarios
Hope this helps!
Kindly let us know if the above helps or you need further assistance on this issue.
Please don’t forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.
Thank you for the response.
The scenarios in the table don't match my scenario however.
In my case the policy is not active or expired - it has been deleted from the storage account scope. At the time when the policy was deleted, it was active and unlocked.
Is it then expected behavior that after an immutable policy has been deleted that existing data will still retain the immutable protection and cannot be deleted until the policy (even though it has been deleted) expires?