Azure_compliance/control/check
Description: In some cases, Azure Storage sets the minimum TLS version to be version 1.0 by default. TLS 1.0 is a legacy version and has known vulnerabilit...
Tue, 22 Aug, 2023 at 4:57 AM
Description: Client certificates allow for the app to request a certificate for incoming requests. Only clients that have a valid certificate will be able ...
Mon, 21 Aug, 2023 at 8:03 AM
Description: Ensure that no SQL Databases allow ingress from 0.0.0.0/0 (ANY IP). Rationale: Azure SQL Server includes a firewall to block access to un...
Tue, 22 Aug, 2023 at 5:01 AM
Description: Transparent Data Encryption (TDE) is a feature of Azure SQL that encrypts data at rest on the server. The TDE protector is the key that is use...
Thu, 3 Aug, 2023 at 8:19 AM
Description: The TLS (Transport Layer Security) protocol secures transmission of data over the internet using standard encryption technology. Encryption sh...
Mon, 21 Aug, 2023 at 8:05 AM
Description: Use Azure Active Directory Authentication for authentication with SQL Database to manage credentials in a single place. Rationale: Azure Ac...
Fri, 18 Aug, 2023 at 6:39 AM
Description: Azure App Service Authentication is a feature that can prevent anonymous HTTP requests from reaching a Web Application or authenticate those w...
Mon, 21 Aug, 2023 at 8:10 AM
Description: Enable "Microsoft Defender for SQL" on critical SQL Servers. Rationale: Microsoft Defender for SQL is a unified package for adv...
Tue, 22 Aug, 2023 at 5:08 AM
Description: Automatic Key Rotation is available in Public Preview. The currently supported applications are Key Vault, Managed Disks, and Storage accounts...
Mon, 21 Aug, 2023 at 8:13 AM
Description: Private endpoints will secure network traffic from Azure Key Vault to the resources requesting secrets and keys. Rationale: Private endp...
Mon, 21 Aug, 2023 at 8:17 AM