Free Assessment

Azure_StorageAccount_5

Ensure that shared access signature tokens are allowed only over https

Description

Shared access signature tokens should be allowed only over HTTPS protocol.

Remediation

Perform the following in the Azure Console:

  1. Go to Storage Accounts
  2. For each storage account, go to Shared access signature
  3. Set Allowed protocols to HTTPS only

Please note that at this point of time, there is no API/CLI mechanism available to
programmatically conduct security assessment for this recommendation.

References:

  1. https://docs.microsoft.com/en-us/rest/api/storageservices/delegating-access-with-a-shared-access-signature

Service

Storage Accounts

Severity

Medium

Compliance

Mapping

Want to Know More?

Learn how our partners are managing their cloud security and compliance with Cloudlytics.

I hereby accept the GDPR and Privacy Policy, by subscribing to the newsletters.

Cloudlytics

Solutions

Resources

Company

Legal

Facebook Twitter Linkedin Youtube
Start Free Trial
Login

CLOSE

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!

Learn More