AzPolicyAdvertizer

last sync: 2025-Jun-20 17:23:43 UTC

[Deprecated]: Web ports should be restricted on Network Security Groups associated to your VM

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

[Deprecated]: Web ports should be restricted on Network Security Groups associated to your VM

201ea587-7c90-41c3-910f-c280ae01cfd6

Version

1.0.0-deprecated
Details on versioning

Versioning

Versions supported for Versioning: 1
1.0.0 (1.0.0-deprecated)
Built-in Versioning [Preview]

Category

Security Center
Microsoft Learn

Description

Azure security center has discovered that some of your virtual machines are running web applications, and the NSGs associated to these virtual machines are overly permissive with regards to the web application ports

Cloud environments

AzureCloud = true
AzureUSGovernment = true
AzureChinaCloud = unknown

Available in AzUSGov

The Policy is available in AzureUSGovernment cloud. Version: '1.0.0-deprecated'
Repository: Azure-Policy 201ea587-7c90-41c3-910f-c280ae01cfd6

Mode

All

Type

BuiltIn

Preview

False

Deprecated

True

Effect

Default
Disabled
Allowed
AuditIfNotExists, Disabled

RBAC role(s)

none

Rule aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	Path	PathIsDefault	DefaultPath	Modifiable
Microsoft.Security/complianceResults/resourceStatus	Microsoft.Security	complianceResults	properties.resourceStatus	True		False

Rule resource types

IF (2)

Microsoft.ClassicCompute/virtualMachines
Microsoft.Compute/virtualMachines

Compliance

Not a Compliance control

Initiatives usage

none

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2020-02-20 08:25:18	change	Previous DisplayName: Web ports should be restricted on Network Security Groups associated to your VM
2020-01-10 16:39:23	change	Previous DisplayName: The NSGs rules for web applications on IaaS should be hardened

JSON compare

n/a

JSON

api-version=2021-06-01
EPAC