Free Assessment

Azure_StorageAccount_10

Ensure that 'Storage service encryption' is enabled for the File Service

Description

With MFA enabled, when a user signs in to an AWS website, they will be prompted for their user name and password as well as for an authentication code from their AWS MFA device. The root account is the most privileged user in an AWS account. MFA adds an extra layer of protection on top of a user name and password.

Remediation

Perform the following in the Azure Console:

  1. Go to Storage Accounts
  2. For each storage account, go to Encryption
  3. Set Storage service encryption to Enabled

Default Values:
By default, Storage service encryption is set to Disabled for file service.

References:

  1. https://docs.microsoft.com/en-us/azure/storage/storage-security-guide#encryption-at-rest
  2. https://docs.microsoft.com/en-us/azure/storage/files/storage-how-to-create-file-share

Service

Storage Accounts

Severity

High

Compliance

Mapping

Want to Know More?

Learn how our partners are managing their cloud security and compliance with Cloudlytics.

I hereby accept the GDPR and Privacy Policy, by subscribing to the newsletters.

Cloudlytics

Solutions

Resources

Company

Legal

Facebook Twitter Linkedin Youtube
Start Free Trial
Login

CLOSE

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!

Learn More