Azure_compliance/control/check
Description: Setting the minimum TLS version to TLS 1.2 ensures that all connections to the storage account use a strong, modern encryption protocol. Older...
Tue, 13 Jan, 2026 at 2:05 PM
Description: This check ensures that the web app hosted in Azure App Service is configured to require incoming client certificates for authentication. Enab...
Fri, 2 Jan, 2026 at 3:10 AM
Description: This control ensures that Azure SQL Servers do not allow access from all IP addresses (0.0.0.0/0). Allowing access from any IP would expose th...
Tue, 13 Jan, 2026 at 2:02 PM
Description: Transparent Data Encryption (TDE) protects SQL databases at rest. By default, SQL uses a Microsoft-managed key to encrypt the TDE protector. C...
Sat, 27 Dec, 2025 at 11:54 AM
Description: Azure Web Apps allow administrators to enforce a minimum TLS version for all HTTPS traffic. Setting the Minimum TLS Version to 1.2 or higher e...
Fri, 2 Jan, 2026 at 3:15 AM
Description: Microsoft Entra admin (formerly Azure AD admin) allows Azure SQL servers to use Microsoft Entra ID authentication. This enables centralized id...
Sat, 27 Dec, 2025 at 11:59 AM
Description: App Service Authentication (also called “App Service Authentication/Authorization”) ensures that only authenticated and authorized users or ap...
Fri, 2 Jan, 2026 at 3:29 AM
Description: Enable "Microsoft Defender for SQL" on critical SQL Servers. Rationale: Microsoft Defender for SQL is a unified package for adv...
Tue, 22 Aug, 2023 at 5:08 AM
Description: Azure Key Vault supports automatic rotation of cryptographic keys by creating new key versions based on a defined rotation policy. When enable...
Tue, 13 Jan, 2026 at 1:01 PM
Description: Azure Private Endpoint for Key Vault enables secure access to vault services over a private IP address within a virtual network. This ensures ...
Tue, 13 Jan, 2026 at 1:05 PM