Azure_StorageAccount_1

Ensure that Secure transfer required is set to ' Enabled '

Description

Enable data encryption is transit.

Remediation

Perform the following in the Azure Console:

  1. Go to Storage Accounts
  2. For each storage account, go to Configuration
  3. Set Secure transfer required to Enabled

Perform the following in Azure Command Line Interface 2.0:

Use the below command to enable Secure transfer required for a Storage Account.

az storage account update –name <storageAccountName> –resource-group <resourceGroupName> –https-only true

References:

  1. https://docs.microsoft.com/en-us/azure/storage/storage-security-guide#encryption-in-transit
  2. https://docs.microsoft.com/en-us/cli/azure/storage/account?view=azure-cli-latest#az_storage_account_list
  3. https://docs.microsoft.com/en-us/cli/azure/storage/account?view=azure-cli-latest#az_storage_account_update

Service

Storage Accounts

Severity

Medium

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!