Source | Azure Portal | ||||||||||||||||||||||
Display name | Storage accounts should disable public network access | ||||||||||||||||||||||
Id | b2982f36-99f2-4db5-8eff-283140c09693 | ||||||||||||||||||||||
Version | 1.0.1 Details on versioning |
||||||||||||||||||||||
Category | Storage Microsoft Learn |
||||||||||||||||||||||
Description | To improve the security of Storage Accounts, ensure that they aren't exposed to the public internet and can only be accessed from a private endpoint. Disable the public network access property as described in https://aka.ms/storageaccountpublicnetworkaccess. This option disables access from any public address space outside the Azure IP range, and denies all logins that match IP or virtual network-based firewall rules. This reduces data leakage risks. | ||||||||||||||||||||||
Mode | All | ||||||||||||||||||||||
Type | BuiltIn | ||||||||||||||||||||||
Preview | False | ||||||||||||||||||||||
Deprecated | False | ||||||||||||||||||||||
Effect | Default Audit Allowed Audit, Deny, Disabled |
||||||||||||||||||||||
RBAC role(s) | none | ||||||||||||||||||||||
Rule aliases | IF (1)
|
||||||||||||||||||||||
Rule resource types | IF (1) Microsoft.Storage/storageAccounts |
||||||||||||||||||||||
Compliance |
The following 1 compliance controls are associated with this Policy definition 'Storage accounts should disable public network access' (b2982f36-99f2-4db5-8eff-283140c09693)
| ||||||||||||||||||||||
Initiatives usage |
|
||||||||||||||||||||||
History |
|
||||||||||||||||||||||
JSON compare |
compare mode:
version left:
version right:
|
||||||||||||||||||||||
JSON |
|