Mod: azure-storage
The azure-storage mod consists of 6 resource types, 114 policies and 50 controls.
Recommended Version
Version
5.30.0
Released On
Sep 18, 2025
Depends On
Resource Types
- Azure > Storage
- Azure > Storage > Access Key
- Azure > Storage > Container
- Azure > Storage > FileShare
- Azure > Storage > Queue
- Azure > Storage > Storage Account
Controls
- Azure > Storage > Access Key > CMDB
- Azure > Storage > Access Key > Discovery
- Azure > Storage > Access Key > Intelligent Assessment
- Azure > Storage > Container > Active
- Azure > Storage > Container > Approved
- Azure > Storage > Container > CMDB
- Azure > Storage > Container > Discovery
- Azure > Storage > Container > Intelligent Assessment
- Azure > Storage > Container > Public Access Level
- Azure > Storage > FileShare > Active
- Azure > Storage > FileShare > Approved
- Azure > Storage > FileShare > CMDB
- Azure > Storage > FileShare > Discovery
- Azure > Storage > FileShare > Intelligent Assessment
- Azure > Storage > Queue > CMDB
- Azure > Storage > Queue > Discovery
- Azure > Storage > Queue > Intelligent Assessment
- Azure > Storage > Storage Account > Access Keys
- Azure > Storage > Storage Account > Access Keys > Rotation Reminder
- Azure > Storage > Storage Account > Access Tier
- Azure > Storage > Storage Account > Active
- Azure > Storage > Storage Account > Approved
- Azure > Storage > Storage Account > Blob
- Azure > Storage > Storage Account > Blob > Logging
- Azure > Storage > Storage Account > Blob Public Access
- Azure > Storage > Storage Account > CMDB
- Azure > Storage > Storage Account > Configured
- Azure > Storage > Storage Account > Cross-Tenant Replication
- Azure > Storage > Storage Account > Data Protection
- Azure > Storage > Storage Account > Data Protection > Soft Delete
- Azure > Storage > Storage Account > Discovery
- Azure > Storage > Storage Account > Encryption at Rest
- Azure > Storage > Storage Account > Encryption in Transit
- Azure > Storage > Storage Account > Firewall
- Azure > Storage > Storage Account > Firewall > Exceptions
- Azure > Storage > Storage Account > Firewall > IP Ranges
- Azure > Storage > Storage Account > Firewall > IP Ranges > Approved
- Azure > Storage > Storage Account > Firewall > IP Ranges > Required
- Azure > Storage > Storage Account > Firewall > Virtual Networks
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Approved
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Required
- Azure > Storage > Storage Account > Intelligent Assessment
- Azure > Storage > Storage Account > Minimum TLS Version
- Azure > Storage > Storage Account > Queue
- Azure > Storage > Storage Account > Queue > Logging
- Azure > Storage > Storage Account > Shared Key Access
- Azure > Storage > Storage Account > Stack [Native]
- Azure > Storage > Storage Account > Table
- Azure > Storage > Storage Account > Table > Logging
- Azure > Storage > Storage Account > Tags
IAM Roles
Policies
- Azure > Storage > Access Key > CMDB
- Azure > Storage > Access Key > Intelligent Assessment
- Azure > Storage > Access Key > Intelligent Assessment > Context
- Azure > Storage > Access Key > Intelligent Assessment > User Prompt
- Azure > Storage > Approved Regions [Default]
- Azure > Storage > Container > Active
- Azure > Storage > Container > Active > Age
- Azure > Storage > Container > Active > Last Modified
- Azure > Storage > Container > Approved
- Azure > Storage > Container > Approved > Custom
- Azure > Storage > Container > Approved > Usage
- Azure > Storage > Container > CMDB
- Azure > Storage > Container > Intelligent Assessment
- Azure > Storage > Container > Intelligent Assessment > Context
- Azure > Storage > Container > Intelligent Assessment > User Prompt
- Azure > Storage > Container > Public Access Level
- Azure > Storage > Enabled
- Azure > Storage > FileShare > Active
- Azure > Storage > FileShare > Active > Age
- Azure > Storage > FileShare > Active > Last Modified
- Azure > Storage > FileShare > Approved
- Azure > Storage > FileShare > Approved > Custom
- Azure > Storage > FileShare > Approved > Usage
- Azure > Storage > FileShare > CMDB
- Azure > Storage > FileShare > Intelligent Assessment
- Azure > Storage > FileShare > Intelligent Assessment > Context
- Azure > Storage > FileShare > Intelligent Assessment > User Prompt
- Azure > Storage > Permissions
- Azure > Storage > Permissions > Levels
- Azure > Storage > Permissions > Levels > Modifiers
- Azure > Storage > Queue > CMDB
- Azure > Storage > Queue > Intelligent Assessment
- Azure > Storage > Queue > Intelligent Assessment > Context
- Azure > Storage > Queue > Intelligent Assessment > User Prompt
- Azure > Storage > Regions
- Azure > Storage > Storage Account > Access Keys
- Azure > Storage > Storage Account > Access Keys > Rotation Reminder
- Azure > Storage > Storage Account > Access Keys > Rotation Reminder > Days
- Azure > Storage > Storage Account > Access Tier
- Azure > Storage > Storage Account > Active
- Azure > Storage > Storage Account > Active > Age
- Azure > Storage > Storage Account > Active > Last Modified
- Azure > Storage > Storage Account > Approved
- Azure > Storage > Storage Account > Approved > Azure Datalake Storage
- Azure > Storage > Storage Account > Approved > Custom
- Azure > Storage > Storage Account > Approved > Infrastructure Encryption
- Azure > Storage > Storage Account > Approved > Regions
- Azure > Storage > Storage Account > Approved > Usage
- Azure > Storage > Storage Account > Blob
- Azure > Storage > Storage Account > Blob > Logging
- Azure > Storage > Storage Account > Blob > Logging > Properties
- Azure > Storage > Storage Account > Blob > Logging > Retention Days
- Azure > Storage > Storage Account > Blob Public Access
- Azure > Storage > Storage Account > CMDB
- Azure > Storage > Storage Account > Configured
- Azure > Storage > Storage Account > Configured > Claim Precedence
- Azure > Storage > Storage Account > Configured > Source
- Azure > Storage > Storage Account > Cross-Tenant Replication
- Azure > Storage > Storage Account > Data Protection
- Azure > Storage > Storage Account > Data Protection > Soft Delete
- Azure > Storage > Storage Account > Data Protection > Soft Delete > Blobs
- Azure > Storage > Storage Account > Data Protection > Soft Delete > Blobs > Retention Days
- Azure > Storage > Storage Account > Data Protection > Soft Delete > Containers
- Azure > Storage > Storage Account > Data Protection > Soft Delete > Containers > Retention Days
- Azure > Storage > Storage Account > Data Protection > Soft Delete > File Shares
- Azure > Storage > Storage Account > Data Protection > Soft Delete > File Shares > Retention Days
- Azure > Storage > Storage Account > Encryption at Rest
- Azure > Storage > Storage Account > Encryption at Rest > Customer Managed Key
- Azure > Storage > Storage Account > Encryption in Transit
- Azure > Storage > Storage Account > Firewall
- Azure > Storage > Storage Account > Firewall > Exceptions
- Azure > Storage > Storage Account > Firewall > Exceptions > Items
- Azure > Storage > Storage Account > Firewall > IP Ranges
- Azure > Storage > Storage Account > Firewall > IP Ranges > Approved
- Azure > Storage > Storage Account > Firewall > IP Ranges > Approved > CIDR Ranges
- Azure > Storage > Storage Account > Firewall > IP Ranges > Approved > Compiled Rules
- Azure > Storage > Storage Account > Firewall > IP Ranges > Approved > Rules
- Azure > Storage > Storage Account > Firewall > IP Ranges > Required
- Azure > Storage > Storage Account > Firewall > IP Ranges > Required > Items
- Azure > Storage > Storage Account > Firewall > Virtual Networks
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Approved
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Approved > Compiled Rules
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Approved > Rules
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Approved > Subnets
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Required
- Azure > Storage > Storage Account > Firewall > Virtual Networks > Required > Items
- Azure > Storage > Storage Account > Intelligent Assessment
- Azure > Storage > Storage Account > Intelligent Assessment > Context
- Azure > Storage > Storage Account > Intelligent Assessment > User Prompt
- Azure > Storage > Storage Account > Minimum TLS Version
- Azure > Storage > Storage Account > Queue
- Azure > Storage > Storage Account > Queue > Logging
- Azure > Storage > Storage Account > Queue > Logging > Properties
- Azure > Storage > Storage Account > Queue > Logging > Properties > Retention Days
- Azure > Storage > Storage Account > Regions
- Azure > Storage > Storage Account > Shared Key Access
- Azure > Storage > Storage Account > Stack [Native]
- Azure > Storage > Storage Account > Stack [Native] > Drift Detection
- Azure > Storage > Storage Account > Stack [Native] > Drift Detection > Interval
- Azure > Storage > Storage Account > Stack [Native] > Modifier
- Azure > Storage > Storage Account > Stack [Native] > Secret Variables
- Azure > Storage > Storage Account > Stack [Native] > Source
- Azure > Storage > Storage Account > Stack [Native] > Timeout
- Azure > Storage > Storage Account > Stack [Native] > Variables
- Azure > Storage > Storage Account > Stack [Native] > Version
- Azure > Storage > Storage Account > Table
- Azure > Storage > Storage Account > Table > Logging
- Azure > Storage > Storage Account > Table > Logging > Properties
- Azure > Storage > Storage Account > Table > Logging > Retention Days
- Azure > Storage > Storage Account > Tags
- Azure > Storage > Storage Account > Tags > Template
- Azure > Storage > Tags Template [Default]
- Azure > Turbot > Permissions > Compiled > Levels > @turbot/azure-storage
- Azure > Turbot > Permissions > Compiled > Service Permissions > @turbot/azure-storage
Policy Packs
- Azure CIS v2.0.0 - Section 3 - Storage Accounts
- Azure CIS v2.0.0 - Section 5 - Logging and Monitoring
- Enforce Azure Storage Account Blob Containers Block Public Access
- Enforce Azure Storage Containers Block Public Access
- Enforce Cool Access Tier for Azure Storage Accounts
- Enforce Secure TLS Version for Azure Storage Accounts