diff --git a/pkg/blob/blob.go b/pkg/blob/blob.go
index 866e9cb4d..286aa8c61 100644
--- a/pkg/blob/blob.go
+++ b/pkg/blob/blob.go
@@ -285,7 +285,7 @@ func NewDriver(options *DriverOptions, kubeClient kubernetes.Interface, cloud *p
 	if d.accountSearchCache, err = azcache.NewTimedCache(time.Minute, getter, false); err != nil {
 		klog.Fatalf("%v", err)
 	}
-	if d.dataPlaneAPIVolCache, err = azcache.NewTimedCache(10*time.Minute, getter, false); err != nil {
+	if d.dataPlaneAPIVolCache, err = azcache.NewTimedCache(24*30*time.Hour, getter, false); err != nil {
 		klog.Fatalf("%v", err)
 	}
 	if d.azcopySasTokenCache, err = azcache.NewTimedCache(15*time.Minute, getter, false); err != nil {
diff --git a/pkg/blob/controllerserver.go b/pkg/blob/controllerserver.go
index ae469954e..59fef1356 100644
--- a/pkg/blob/controllerserver.go
+++ b/pkg/blob/controllerserver.go
@@ -844,7 +844,7 @@ func (d *Driver) authorizeAzcopyWithIdentity() ([]string, error) {
 func (d *Driver) getAzcopyAuth(ctx context.Context, accountName, accountKey, storageEndpointSuffix string, accountOptions *azure.AccountOptions, secrets map[string]string, secretName, secretNamespace string) (string, []string, error) {
 	var authAzcopyEnv []string
 	useSasToken := false
-	if len(secrets) == 0 && len(secretName) == 0 {
+	if !d.useDataPlaneAPI("", accountName) && len(secrets) == 0 && len(secretName) == 0 {
 		var err error
 		authAzcopyEnv, err = d.authorizeAzcopyWithIdentity()
 		if err != nil {