Share via

Need to have help removing immutability lock so that I can modify the data retention schedule

marcj 40 Reputation points
2026-02-06T20:08:42.13+00:00

I have one vault for which I enabled immutability before understanding that I needed to modify the data retention policy before making the final change.

Azure Backup
Azure Backup

An Azure backup service that provides built-in management at scale.

Answer accepted by question author
  1. Andreas Baumgarten 131K Reputation points MVP Volunteer Moderator
    2026-02-06T20:31:22.56+00:00

    Hi @marcj ,

    while enabling the "Immutable vault" option did you enable "Locked" option as well?

    If so, the "Immutable vault" option can't be reverted.

    Source: Enable Immutable vault

    You should have seen a warning message when you enable the "Locked" option.

    User's image

    There are two options if the "Immutable vault" option is "Locked":

    Wait until the retention period of the backups are expired and try to modify the setting or open a support request with Azure Support.

    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

    Regards

    Andreas Baumgarten

    0 comments

2 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. marcj 40 Reputation points
    2026-02-12T19:06:01.62+00:00

    in my case I had to contact Azure support

    0 comments
  2. Bharath Y P 5,755 Reputation points Microsoft External Staff Moderator
    2026-02-06T21:15:31.2166667+00:00

    Hello marcj, We Understand that you enabled immutability on an Azure Recovery Services Vault and later realized that the backup retention policy needs to be modified. However, because immutability was enabled (and possibly locked), you are now unable to change the retention settings and want to know whether the immutability lock can be removed.

    Azure Backup immutability uses WORM (Write Once, Read Many) storage. When the immutability lock is applied:

    • Azure permanently prevents any operation that could delete or reduce backup data.
    • Even subscription owners or Azure Support cannot override or remove the lock.

    Because of this security guarantee, Azure intentionally does not provide any mechanism to unlock or roll back a locked immutable vault.

    Increase retention: What you are allowed is you can Increase retention if the increasing the retention of backup items that are in not in suspended state.

    You may increase the retention period, but you cannot decrease it while immutability is locked.

    How to manage Azure Backup Immutable vault operations - Azure Backup | Microsoft Learn

    Wait for retention to expire: All existing recovery points must fully expire based on the current retention. After that, you can stop protection and move workloads elsewhere.

    Create a new vault: Create a new Recovery Services Vault.

    • Configure the correct retention policy first.
    • Enable immutability only after validating the policy.
    • Start fresh backups to the new vault.

    Hope this helps! If you encounter any issues, please reach out to us. Thanks.

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.