turbot/azure_compliance

Control: Storage account public access should be disallowed

Description

Anonymous public read access to containers and blobs in Azure Storage is a convenient way to share data but might present security risks. To prevent data breaches caused by undesired anonymous access, Microsoft recommends preventing public access to a storage account unless your scenario requires it.

Usage

Run the control in your terminal:

powerpipe control run azure_compliance.control.storage_account_block_public_access

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run azure_compliance.control.storage_account_block_public_access --share

SQL

This control uses a named query:

storage_account_block_public_access

Tags