Mod: azure-storage
The azure-storage mod consists of 6 resource types, 86 policies and 42 controls.
Recommended Version
Version
5.20.2
Released On
Sep 13, 2024
Depends On
Resource Types
- Azure > Storage
- Azure > Storage > Access Key
- Azure > Storage > Container
- Azure > Storage > FileShare
- Azure > Storage > Queue
- Azure > Storage > Storage Account
Controls
- Azure > Storage > Access Key > CMDB
- Azure > Storage > Access Key > Discovery
- Azure > Storage > Container > Active
- Azure > Storage > Container > Approved
- Azure > Storage > Container > CMDB
- Azure > Storage > Container > Discovery
- Azure > Storage > Container > Public Access Level
- Azure > Storage > FileShare > Active
- Azure > Storage > FileShare > Approved
- Azure > Storage > FileShare > CMDB
- Azure > Storage > FileShare > Discovery
- Azure > Storage > Queue > CMDB
- Azure > Storage > Queue > Discovery
- Azure > Storage > Storage Account > Access Keys
- Azure > Storage > Storage Account > Access Keys > Rotation Reminder
- Azure > Storage > Storage Account > Access Tier
- Azure > Storage > Storage Account > Active
- Azure > Storage > Storage Account > Approved
- Azure > Storage > Storage Account > Blob
- Azure > Storage > Storage Account > Blob > Logging
- Azure > Storage > Storage Account > Blob Public Access
- Azure > Storage > Storage Account > CMDB
- Azure > Storage > Storage Account > Configured
- Azure > Storage > Storage Account > Data Protection
- Azure > Storage > Storage Account > Data Protection > Soft Delete
- Azure > Storage > Storage Account > Discovery
- Azure > Storage > Storage Account > Encryption at Rest
- Azure > Storage > Storage Account > Encryption in Transit
- Azure > Storage > Storage Account > Firewall
- Azure > Storage > Storage Account > Firewall > Exceptions
- Azure > Storage > Storage Account > Firewall > IP Ranges
- Azure > Storage > Storage Account > Firewall > IP Ranges > Approved
- Azure > Storage > Storage Account > Firewall > IP Ranges > Required
- Azure > Storage > Storage Account > Firewall > Virtual Networks
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Approved
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Required
- Azure > Storage > Storage Account > Minimum TLS Version
- Azure > Storage > Storage Account > Queue
- Azure > Storage > Storage Account > Queue > Logging
- Azure > Storage > Storage Account > Table
- Azure > Storage > Storage Account > Table > Logging
- Azure > Storage > Storage Account > Tags
IAM Roles
Policies
- Azure > Storage > Access Key > CMDB
- Azure > Storage > Approved Regions [Default]
- Azure > Storage > Container > Active
- Azure > Storage > Container > Active > Age
- Azure > Storage > Container > Active > Last Modified
- Azure > Storage > Container > Approved
- Azure > Storage > Container > Approved > Custom
- Azure > Storage > Container > Approved > Usage
- Azure > Storage > Container > CMDB
- Azure > Storage > Container > Public Access Level
- Azure > Storage > Enabled
- Azure > Storage > FileShare > Active
- Azure > Storage > FileShare > Active > Age
- Azure > Storage > FileShare > Active > Last Modified
- Azure > Storage > FileShare > Approved
- Azure > Storage > FileShare > Approved > Custom
- Azure > Storage > FileShare > Approved > Usage
- Azure > Storage > FileShare > CMDB
- Azure > Storage > Permissions
- Azure > Storage > Permissions > Levels
- Azure > Storage > Permissions > Levels > Modifiers
- Azure > Storage > Queue > CMDB
- Azure > Storage > Regions
- Azure > Storage > Storage Account > Access Keys
- Azure > Storage > Storage Account > Access Keys > Rotation Reminder
- Azure > Storage > Storage Account > Access Keys > Rotation Reminder > Days
- Azure > Storage > Storage Account > Access Tier
- Azure > Storage > Storage Account > Active
- Azure > Storage > Storage Account > Active > Age
- Azure > Storage > Storage Account > Active > Last Modified
- Azure > Storage > Storage Account > Approved
- Azure > Storage > Storage Account > Approved > Azure Datalake Storage
- Azure > Storage > Storage Account > Approved > Custom
- Azure > Storage > Storage Account > Approved > Infrastructure Encryption
- Azure > Storage > Storage Account > Approved > Regions
- Azure > Storage > Storage Account > Approved > Usage
- Azure > Storage > Storage Account > Blob
- Azure > Storage > Storage Account > Blob > Logging
- Azure > Storage > Storage Account > Blob > Logging > Properties
- Azure > Storage > Storage Account > Blob > Logging > Retention Days
- Azure > Storage > Storage Account > Blob Public Access
- Azure > Storage > Storage Account > CMDB
- Azure > Storage > Storage Account > Configured
- Azure > Storage > Storage Account > Configured > Claim Precedence
- Azure > Storage > Storage Account > Configured > Source
- Azure > Storage > Storage Account > Data Protection
- Azure > Storage > Storage Account > Data Protection > Soft Delete
- Azure > Storage > Storage Account > Data Protection > Soft Delete > Blobs
- Azure > Storage > Storage Account > Data Protection > Soft Delete > Blobs > Retention Days
- Azure > Storage > Storage Account > Data Protection > Soft Delete > Containers
- Azure > Storage > Storage Account > Data Protection > Soft Delete > Containers > Retention Days
- Azure > Storage > Storage Account > Encryption at Rest
- Azure > Storage > Storage Account > Encryption at Rest > Customer Managed Key
- Azure > Storage > Storage Account > Encryption in Transit
- Azure > Storage > Storage Account > Firewall
- Azure > Storage > Storage Account > Firewall > Exceptions
- Azure > Storage > Storage Account > Firewall > Exceptions > Items
- Azure > Storage > Storage Account > Firewall > IP Ranges
- Azure > Storage > Storage Account > Firewall > IP Ranges > Approved
- Azure > Storage > Storage Account > Firewall > IP Ranges > Approved > CIDR Ranges
- Azure > Storage > Storage Account > Firewall > IP Ranges > Approved > Compiled Rules
- Azure > Storage > Storage Account > Firewall > IP Ranges > Approved > Rules
- Azure > Storage > Storage Account > Firewall > IP Ranges > Required
- Azure > Storage > Storage Account > Firewall > IP Ranges > Required > Items
- Azure > Storage > Storage Account > Firewall > Virtual Networks
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Approved
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Approved > Compiled Rules
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Approved > Rules
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Approved > Subnets
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Required
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Required > Items
- Azure > Storage > Storage Account > Minimum TLS Version
- Azure > Storage > Storage Account > Queue
- Azure > Storage > Storage Account > Queue > Logging
- Azure > Storage > Storage Account > Queue > Logging > Properties
- Azure > Storage > Storage Account > Queue > Logging > Properties > Retention Days
- Azure > Storage > Storage Account > Regions
- Azure > Storage > Storage Account > Table
- Azure > Storage > Storage Account > Table > Logging
- Azure > Storage > Storage Account > Table > Logging > Properties
- Azure > Storage > Storage Account > Table > Logging > Retention Days
- Azure > Storage > Storage Account > Tags
- Azure > Storage > Storage Account > Tags > Template
- Azure > Storage > Tags Template [Default]
- Azure > Turbot > Permissions > Compiled > Levels > @turbot/azure-storage
- Azure > Turbot > Permissions > Compiled > Service Permissions > @turbot/azure-storage
Policy Packs
- Azure CIS v2.0.0 - Section 3 - Storage Accounts
- Azure CIS v2.0.0 - Section 5 - Logging and Monitoring
- Enforce Azure Storage Account Blob Containers Block Public Access
- Enforce Azure Storage Containers Block Public Access
- Enforce Cool Access Tier for Azure Storage Accounts
- Enforce Secure TLS Version for Azure Storage Accounts