| Name | Storage accounts should disable public network access Azure Portal |
||||||||||||||||||||||
| Id | b2982f36-99f2-4db5-8eff-283140c09693 | ||||||||||||||||||||||
| Version | 1.0.1 details on versioning |
||||||||||||||||||||||
| Category | Storage Microsoft docs |
||||||||||||||||||||||
| Description | To improve the security of Storage Accounts, ensure that they aren't exposed to the public internet and can only be accessed from a private endpoint. Disable the public network access property as described in https://aka.ms/storageaccountpublicnetworkaccess. This option disables access from any public address space outside the Azure IP range, and denies all logins that match IP or virtual network-based firewall rules. This reduces data leakage risks. | ||||||||||||||||||||||
| Mode | All | ||||||||||||||||||||||
| Type | BuiltIn | ||||||||||||||||||||||
| Preview | FALSE | ||||||||||||||||||||||
| Deprecated | FALSE | ||||||||||||||||||||||
| Effect | Default Audit Allowed Audit, Deny, Disabled |
||||||||||||||||||||||
| RBAC Role(s) |
none | ||||||||||||||||||||||
| Rule Aliases |
IF (1)
|
||||||||||||||||||||||
| Rule ResourceTypes |
IF (1) Microsoft.Storage/storageAccounts |
||||||||||||||||||||||
| Compliance | The following 1 compliance controls are associated with this Policy definition 'Storage accounts should disable public network access' (b2982f36-99f2-4db5-8eff-283140c09693)
|
||||||||||||||||||||||
| History |
|
||||||||||||||||||||||
| Initiatives usage |
|
||||||||||||||||||||||
| JSON |
|