last sync: 2023-Dec-04 18:38:36 UTC

Azure Policy definition

Configure your Storage account public access to be disallowed

Source Azure Portal
Display name Configure your Storage account public access to be disallowed
Id 13502221-8df0-4414-9937-de9c5c4e396b
Version 1.0.0
Details on versioning
Category Storage
Microsoft Learn
Description Anonymous public read access to containers and blobs in Azure Storage is a convenient way to share data but might present security risks. To prevent data breaches caused by undesired anonymous access, Microsoft recommends preventing public access to a storage account unless your scenario requires it.
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
Modify
Allowed
Modify, Disabled
RBAC role(s)
Role Name Role Id
Storage Account Contributor 17d1049b-9a84-46fb-8f53-869881c3d3ab
Rule aliases IF (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Storage/storageAccounts/allowBlobPublicAccess Microsoft.Storage storageAccounts properties.allowBlobPublicAccess true
THEN-Operations (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Storage/storageAccounts/allowBlobPublicAccess Microsoft.Storage storageAccounts properties.allowBlobPublicAccess true
Rule resource types IF (1)
Microsoft.Storage/storageAccounts
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-09-02 16:33:37 add 13502221-8df0-4414-9937-de9c5c4e396b
JSON compare n/a
JSON
api-version=2021-06-01
EPAC