| Source | Azure Portal | ||||||||||||||
| Display name | [Deprecated]: FTPS only should be required in your API App | ||||||||||||||
| Id | 9a1b8c48-453a-4044-86c3-d8bfd823e4f5 | ||||||||||||||
| Version | 2.0.0-deprecated Details on versioning |
||||||||||||||
| Versioning |
Versions supported for Versioning: 1 2.0.0 (2.0.0-deprecated) Built-in Versioning [Preview] |
||||||||||||||
| Category | App Service Microsoft Learn |
||||||||||||||
| Description | Enable FTPS enforcement for enhanced security. We recommend all customers who are still using API Apps to implement the built-in policy called 'App Service apps should require FTPS only', which is scoped to include API apps in addition to Web Apps. | ||||||||||||||
| Cloud environments | AzureCloud = true AzureUSGovernment = unknown AzureChinaCloud = unknown |
||||||||||||||
| Available in AzUSGov | Unknown, no evidence if Policy definition is/not available in AzureUSGovernment | ||||||||||||||
| Assessment(s) |
Assessments count: 1 Assessment Id: 67fc622b-4ce6-8c52-08ae-9f830036b757 DisplayName: FTPS should be required in API apps Description: FTPS, or FTP Secure, provides an additional layer of security by encrypting the file transfer process. This helps safeguard sensitive data from unauthorized access. If this measure isn't implemented, the apps could be at risk of data breaches and unauthorized access, which could compromise user data and the integrity of the system. Therefore, we recommend enabling FTPS enforcement. Remediation description: To ensure enforcement of FTPS only for your API app: 1. Go to the App Service for your API app 2. Select Configuration, and go to the General Settings tab 3. In FTP state, select FTPS only. For more information, visit here: https://aka.ms/deploy-ftp Categories: AppServices Severity: High preview: True |
||||||||||||||
| Mode | Indexed | ||||||||||||||
| Type | BuiltIn | ||||||||||||||
| Preview | False | ||||||||||||||
| Deprecated | True | ||||||||||||||
| Effect | Default AuditIfNotExists Allowed AuditIfNotExists, Disabled |
||||||||||||||
| RBAC role(s) | none | ||||||||||||||
| Rule aliases | THEN-ExistenceCondition (1)
|
||||||||||||||
| Rule resource types | IF (1) |
||||||||||||||
| Compliance | Not a Compliance control | ||||||||||||||
| Initiatives usage | none | ||||||||||||||
| History |
|
||||||||||||||
| JSON compare |
compare mode:
version left:
version right:
|
||||||||||||||
| JSON |
|