Policy: Azure > CIS v2.0 > 03 - Storage Accounts > 3.08 - Ensure Default Network Access Rule for Storage Accounts is Set to Deny
Configures auditing against a CIS Benchmark item.
Level: 1
Restricting default network access helps to provide a new layer of security, since storage accounts accept connections from clients on any network. To limit access to selected networks, the default action must be changed.
Targets
This policy targets the following resource types:
Primary Policy
This policy is used with the following primary policy:
Policy Specification
Schema Type |
|
---|---|
Default |
|
Valid Values [YAML] |
|
Category
In Your Workspace
Developers
- tmod:@turbot/cis#/control/categories/v071303
- tmod:@turbot/azure-cisv2-0#/policy/types/r0308
- turbot graphql policy-type --id "tmod:@turbot/azure-cisv2-0#/policy/types/r0308"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/azure-cisv2-0#/policy/types/r0308"
Get Policy TypeGet Policy Settings
Category URI
Policy Type URI
GraphQL
CLI