last sync: 2023-Jun-01 17:45:04 UTC

Azure Landing Zones (ALZ) Policy definition

Storage Account set to minimum TLS and Secure transfer should be enabled

Name Storage Account set to minimum TLS and Secure transfer should be enabled
Azure Landing Zones (ALZ) GitHub
JSON Deny-Storage-minTLS
Id Deny-Storage-minTLS
Version 1.0.0
details on versioning
Category Storage
Microsoft docs
Description Audit requirement of Secure transfer in your storage account. Secure transfer is an option that forces your storage account to accept requests only from secure connections (HTTPS). Use of HTTPS ensures authentication between the server and the service and protects data in transit from network layer attacks such as man-in-the-middle, eavesdropping, and session-hijacking
Mode Indexed
Type Custom Azure Landing Zones (ALZ)
Preview FALSE
Deprecated FALSE
Effect Default
Audit, Deny, Disabled
Used RBAC Role none
Rule Aliases IF (2)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Storage/storageAccounts/minimumTlsVersion Microsoft.Storage storageAccounts properties.minimumTlsVersion true
Microsoft.Storage/storageAccounts/supportsHttpsTrafficOnly Microsoft.Storage storageAccounts properties.supportsHttpsTrafficOnly true
Rule ResourceTypes IF (1)
History none
Used in Initiatives
Initiative DisplayName Initiative Id Initiative Category State
Deny or Deploy and append TLS requirements and SSL enforcement on resources without Encryption in transit Enforce-EncryptTransit Encryption GA