Azure_compliance/control/check

Ensure the "Minimum TLS version" for storage accounts is set to "Version 1.2" .
Description: In some cases, Azure Storage sets the minimum TLS version to be version 1.0 by default. TLS 1.0 is a legacy version and has known vulnerabilit...
Tue, 22 Aug, 2023 at 4:57 AM
Ensure the web app has 'Client Certificates (Incoming client certificates)' set to 'On'
Description: Client certificates allow for the app to request a certificate for incoming requests. Only clients that have a valid certificate will be able ...
Mon, 21 Aug, 2023 at 8:03 AM
Ensure no Azure SQL Databases allow ingress from 0.0.0.0/0 (ANY IP)
Description: Ensure that no SQL Databases allow ingress from 0.0.0.0/0 (ANY IP). Rationale: Azure SQL Server includes a firewall to block access to un...
Tue, 22 Aug, 2023 at 5:01 AM
Ensure SQL server's Transparent Data Encryption (TDE) protector is encrypted with Customer managed key
Description: Transparent Data Encryption (TDE) is a feature of Azure SQL that encrypts data at rest on the server. The TDE protector is the key that is use...
Thu, 3 Aug, 2023 at 8:19 AM
Ensure Web App is using the latest version of TLS encryption
Description: The TLS (Transport Layer Security) protocol secures transmission of data over the internet using standard encryption technology. Encryption sh...
Mon, 21 Aug, 2023 at 8:05 AM
Ensure that Azure Active Directory Admin is Configured for SQL Servers
Description: Use Azure Active Directory Authentication for authentication with SQL Database to manage credentials in a single place. Rationale: Azure Ac...
Fri, 18 Aug, 2023 at 6:39 AM
Ensure App Service Authentication is set up for apps in Azure App Service
Description: Azure App Service Authentication is a feature that can prevent anonymous HTTP requests from reaching a Web Application or authenticate those w...
Mon, 21 Aug, 2023 at 8:10 AM
Ensure that Microsoft Defender for SQL is set to 'On' for critical SQL Servers
Description: Enable "Microsoft Defender for SQL" on critical SQL Servers. Rationale: Microsoft Defender for SQL is a unified package for adv...
Tue, 22 Aug, 2023 at 5:08 AM
Ensure Automatic Key Rotation is Enabled Within Azure Key Vault for the Supported Services
Description: Automatic Key Rotation is available in Public Preview. The currently supported applications are Key Vault, Managed Disks, and Storage accounts...
Mon, 21 Aug, 2023 at 8:13 AM
Ensure that Private Endpoints are Used for Azure Key Vault
Description: Private endpoints will secure network traffic from Azure Key Vault to the resources requesting secrets and keys. Rationale: Private endp...
Mon, 21 Aug, 2023 at 8:17 AM