AzPolicyAdvertizer

last sync: 2021-Sep-24 16:09:49 UTC

Azure Policy definition

[Deprecated]: Audit Web Sockets state for a Web Application

Name	[Deprecated]: Audit Web Sockets state for a Web Application Azure Portal
Id	e797f851-8be7-4c40-bb56-2e3395215b0e
Version	1.0.0-deprecated details on versioning
Category	Security Center Microsoft docs
Description	The Web Sockets protocol is vulnerable to different types of security threats. Use of Web Sockets within a web application must be carefully reviewed.
Mode	All
Type	BuiltIn
Preview	FALSE
Deprecated	True
Effect	Default: AuditIfNotExists Allowed: (AuditIfNotExists, Disabled)
Used RBAC Role	none
History	none
Used in Initiatives	none
JSON	{ "displayName": "[Deprecated]: Audit Web Sockets state for a Web Application", "policyType": "BuiltIn", "mode": "All", "description": "The Web Sockets protocol is vulnerable to different types of security threats. Use of Web Sockets within a web application must be carefully reviewed.", "metadata": { "version": "1.0.0-deprecated", "category": "Security Center", "deprecated": true }, "parameters": { "effect": { "type": "String", "metadata": { "displayName": "Effect", "description": "Enable or disable the execution of the policy" }, "allowedValues": [ "AuditIfNotExists", "Disabled" ], "defaultValue": "AuditIfNotExists" } }, "policyRule": { "if": { "allof": [ { "field": "type", "equals": "microsoft.Web/sites" }, { "anyof": [ { "field": "kind", "equals": "app" }, { "field": "kind", "equals": "WebApp" }, { "field": "kind", "equals": "app,linux" }, { "field": "kind", "equals": "app,linux,container" } ] } ] }, "then": { "effect": "[parameters('effect')]", "details": { "type": "Microsoft.Security/complianceResults", "name": "DisableWebSockets", "existenceCondition": { "field": "Microsoft.Security/complianceResults/resourceStatus", "in": [ "OffByPolicy", "Healthy" ] } } } } }