AzPolicyAdvertizer

last sync: 2022-Oct-03 16:35:36 UTC

Azure Policy definition

App Service Environment apps should not be reachable over public internet

Name

App Service Environment apps should not be reachable over public internet
Azure Portal

2d048aca-6479-4923-88f5-e2ac295d9af3

Version

2.0.0
details on versioning

Category

App Service
Microsoft docs

Description

To ensure apps deployed in an App Service Environment are not accessible over public internet, one should deploy App Service Environment with an IP address in virtual network. To set the IP address to a virtual network IP, the App Service Environment must be deployed with an internal load balancer.

Mode

Indexed

Type

BuiltIn

Preview

FALSE

Deprecated

FALSE

Effect

Default: Audit
Allowed: (Audit, Deny, Disabled)

Used RBAC Role

none

Rule Aliases

IF (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Web/HostingEnvironments/internalLoadBalancingMode	Microsoft.Web	hostingEnvironments	properties.internalLoadBalancingMode	false

Rule ResourceTypes

IF (1)
Microsoft.Web/hostingEnvironments

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-02-11 18:30:22	change	Major (1.0.0 > 2.0.0)
2021-06-22 14:29:30	add	2d048aca-6479-4923-88f5-e2ac295d9af3

Used in Initiatives

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
Audit Public Network Access	f1535064-3294-48fa-94e2-6e83095a5c08	SDN	GA	BuiltIn

JSON Changes

Visual JSON JSON (Annotated)

Show unchanged values

JSON

AzPolicyAdvertizer

Azure Policy definition

App Service Environment apps should not be reachable over public internet

JSON Left

JSON Right