Microsoft Azure Security Technologies (AZ-500) Practice Exam 2026 – Comprehensive All-in-One Guide to Exam Success!

Creating a new stored access policy does not revoke access to an Azure Storage account; rather, it serves as a mechanism for managing and controlling access permissions to the resources associated with that storage account. A stored access policy is essentially a named set of permissions that can be applied to shared access signatures (SAS).

When you create a new stored access policy, it defines a set of permissions, start and expiry times, and allows you to update those parameters without having to regenerate the SAS token. Existing SAS tokens that were issued with earlier policies remain unaffected unless specifically updated or invalidated.

This ability to create stored access policies enhances the management of access rights, but it does not directly revoke access. Any access defined by existing SAS tokens continues to function until those tokens expire or are explicitly revoked. Thus, creating a new policy does not disrupt any existing access that might be granted via current SAS tokens associated with previous access policies or directly with the storage account itself.