chore: sign templates 🤖
ghost
parent
27d63e837c
commit
73404d6a74
|
|
@ -54,5 +54,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'roleName + " grants full administrative access and should not exist under POLP guidelines"'
|
||||
|
||||
# digest: 4a0a00473045022100c084ca048060c51ba938e0806562eaf2ca6d4c36a770aa4e6ef592178daae50202207a5a62d83062c44065fd833ac56b462a0387c21775700d34feaa3c74482b5d52:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a00483046022100f859874a74575d8c022f812d59ff22fff83055a0402f0d38b7362cb3e4b12396022100e1f277b14129504389f98bebac7d6f684e4bfb766cde31b93527496cd45f1932:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -51,5 +51,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'roleName + " is a custom owner role with excessive permissions"'
|
||||
|
||||
# digest: 490a0046304402204130935153bc92a20a4bcac1214638cc1f17b278d052481999e2f7daa2f2e93a02206d0a7777c2d62e5781b1754d03e8cf010785e5cbb5d52e37ebf2ab68bf891581:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402206c4f926f7b2fe3c131efd1b2da59514089e79115e21b51ac086d9c228eca1a7902201b521f5cb521c49a713980fdd7c40a3fe599042da10c1b1052b7f4bb6ab5112b:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -68,5 +68,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- '"Role " + roleName + " is not assigned to any identity. Role unutilized for resource lock management."'
|
||||
|
||||
# digest: 4a0a00473045022100d6af1af2122c457cfe44d797974d9f6ec7c7767ce62a8cd0ca853c9a307010ba022010534c35e92d4a5fc10e80ecad761810503fdd0a3e905dc23c72494a8c97d020:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502202b6a40d650bdf15aa729225a2070cc352cef52f89c2ef93543db34a53f2153e9022100be29fc67afc055dd2b54a605fd627af956692a8a54755553f7aa8592706cd2ba:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -30,5 +30,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- '"Azure Account han an Entra ID guest user Microsoft Entra ID"'
|
||||
|
||||
# digest: 4b0a00483046022100ec1dd9e68972df01755647faabb280a8a67fcbbf3fe058bfaf10525c06511b830221008de8633cbc4c1bcf5ef7da41aa42e5f0f5efea1ed339a8ae0eec67476f315c38:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a00483046022100b8a6a0269e19e9c3dce2f5360a03d30194c43dd26f6bf43d773e9500d53ac14b022100bcfa41a6ed2015b08fbb6e732a1fff7b02870b00738c695664e8822ba263f1be:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'userPrincipalName + " is a privileged user without MFA enabled"'
|
||||
|
||||
# digest: 4b0a00483046022100d3d1af9af52ed30bddae2ab4a66607b89c88b60b3d00a7d05992dd28047fdec0022100c4611c965b985a5a8e122387851627396bd398cb61c5dfdd77b5841845b529d9:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100bf1ba2a0bab1cf40c3415ba76b5ab46656e09dd3f0055341b64c8bff06f3f69902207a486286154868439f21b4a4c8f537828f0aa4ca0c55d6da8ba60b22a6f9bac2:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Delete MySQL Database events"'
|
||||
|
||||
# digest: 4b0a00483046022100fdfc852d94ccadf2e01d2f3b7c1717a0b49c5727dad259b361fc54668391c83f022100e95e834c18f4599b17626d7c382e3f560bfb8002e13fc919f4af657caff8b9d4:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a00483046022100d4e4fcf7f8b13ed82699f398ebcf6dc75ba0f60a8b94f4cf76264b652e6bad43022100b7baa8c27193431429bd62d848f5deedfd6347564c0a840f7fa72ed64cc10c9d:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Delete Load Balancer events"'
|
||||
|
||||
# digest: 490a004630440220474d6a7d1a0ce6af6508d607873d8bed8cd2786e5dc78d0598afe27681f5504002203835b9d3f876cc3b231471c02a1130e171c6ba2bad9ae2e13696a995a7539e36:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100ee51b8128845566ce0b7924060e6ac75acc16c9235d55ad2f934d88cad12465f02202334498edd73fe78017d647f698f1cf4f09da23387f2da79f0f17d852ce91330:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Delete Key Vault events"'
|
||||
|
||||
# digest: 4a0a0047304502201c6e776ab90b215094c951e7849baa9e0b1aa5a5adadfcaa56352067f1f47c08022100ba3e2154818685363a2f7a4a17a24da9147cd611e47ec41e8d1cd2741477d1e0:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402203f388c79d1aaee1de984ca49c16839fddd9c78f108adc2f2593a4190ed66cf3a0220456063ee7dc4119f33516e333b986bf9e2b2025836f4c5c2d9eb0baecc6e7607:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Update Key Vault events"'
|
||||
|
||||
# digest: 490a00463044022062014d020dac5644117d1d89270d4bb09d06e5c00afd496e707c686cf6801564022062240ffda017f2687333b93de97fc04a4df304d3c814ee51b2cf10e42560cd76:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502206d0df84e3e36655135df1e4ec88094c98e5cf19dce01c4d1bf1f150c85c5e67d022100b86894230387b11c04ac0062a3557a8d467e21f0cdb23637ba30df9245f9e4ce:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'ids + " does not have correct Create or Update Load Balancer alert configured"'
|
||||
|
||||
# digest: 4b0a00483046022100e444bd7bd71ee12670c23d49e584c0b754635971064bf53f9b1dc8e49781e89d022100bf2ac5e0e3d0859d6a37e663e0805c1702d8edf2eb1eac6243a8ab58536788a6:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a004730450220394397b14be551ecb4fdef27d131caaf792c25754a9375d417c1e8cd32132d52022100fb27b4c1bddfa2cba0b9cc7548c5846781c423a6b277fd2e1f41b6dbcaca67a2:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Create/Update MySQL Database events"'
|
||||
|
||||
# digest: 490a0046304402207c70ee524c3f1ba2c5cfa97851847a053378e20bd87b5b85587b1677a5aeaa6702203793d22eb8199e1d45ed11592ff263f99aeb79b70d867fc200ec4c0be6fdf9bd:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a00483046022100a760d5614b2df1a25a1f64d4182047ebb4b11a2c6f43d3bbe84fc15a4043fdbe022100f8218222b097611cc173824f1ebfadcaa5ae461e92628797695ff6fdb87fbc36:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'nsg + " does not have the correct alert configuration for Create/Update Network Security Group events"'
|
||||
|
||||
# digest: 490a0046304402200edbf470e2c321b4ae7134d15b2727c3bc80ad362bac00d2a8a1fe1a3323e4340220035ba35fe074fb1d4a81d70dd24ff93e987b1079cd637bb12367e4e3e12bbfd9:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402200b4c1b1606a86bb7296c7648c8578a7bc4c6218df880326998bb1eeffc80438402201c90f87e58613a3eb5adc3f05d7d58f61c405f7d788d7c48787570cd42909589:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'nsg + " does not have the correct alert configuration for Delete Network Security Group events"'
|
||||
|
||||
# digest: 490a00463044022022db58abf9eb1b1e3dacafdb987894e4430ed44b6c2bf51dc9aef83540096c8902200f563152501d732713d25dcdb0f15d4f6dc3b8922700ebf17431bb6ff6b7ef9d:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100a1977463af31155a0bfcb3793d668849c100940f4eb6a6eeb56b257775f7a638022046a58ff4dd9718bafff1ca134baaf7501d5ce2177db7ba5fbaa53211581f85d1:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Delete Network Security Group Rule events"'
|
||||
|
||||
# digest: 4b0a00483046022100b5fc94a32465df75251e3dee9c9dc098f8c1aec5f5c4dfd568719064c924f28c022100f473a32aacc944c47810d5d3961715e687de0a177534bacf3cdae114163d161c:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100db67a30c9a5c295ff9c74d3f8cb9b37dd46ec999f1d8d4d23b63025903c3fb410220313f77d5b97d8d0b327a38185bb887ceadde9eff03e86a311c758ffecb50baca:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'nsg + " does not have the correct alert configuration for Create/Update Network Security Group Rule events"'
|
||||
|
||||
# digest: 4a0a00473045022100a2b02efbfa4550a903fc0d4197640be70bf942ce72d57058cd9ba266554de95a02204cb39055877c2e69b26b98e291d876f663664cfbc54c198b3e262d8eb0d9cb05:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022006ddfa526f14feee14665b82fbe22b7b65ed2532e560c6d38c653ff84ab244da022100a9d7e4216ff666a1cd087d3c1c55a7f26c8f98eb24c8bea9c2709c832ab1d024:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -50,5 +50,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " alert does not detect Create Policy Assignment events"'
|
||||
|
||||
# digest: 4a0a00473045022100d1d96e889d10a6a7a74ef2322257d26ddffce2e89d3f35805ebc6920586b14bb02200428f879c0aaab2fe48de288274514ba2c515602fa130e05e898f525e13a1963:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022058fda1d54f91c56eb4059e97711d603f204a20ee5ff8cd57a8ffceeb1507db54022100be85aac2ec5c344332d49255ada3ae9003f5c6298890188c8ac351e6533d360c:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Delete Policy Assignment events"'
|
||||
|
||||
# digest: 4a0a004730450221008b612f4af046a64f8ab5de735582952f091064c5f851651020db1130c938a6a702204281af316072d5ea48332fe1a4e7afd831168a0af9abd8d08f52ceb67b9bcda6:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502202cdee3f598ca8aef10a5d81090b3d5d2db1bb6153f666be2d22cb5435d701667022100a5522ef65e80858c564e88d266a7f9a98d2c20120a3d3db22f2447314b587f87:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Delete PostgreSQL Database events"'
|
||||
|
||||
# digest: 4b0a00483046022100c465524bd26307014ce8d862b9f42c5b454ebc43b13f5a93174581f0d96a7ef1022100a62c097a475ee474214f45dd2fc862d1e94e963bb81414cfcf22e7a93c5aca12:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a00463044022076740e242aab0f4963361e641dfc268175f967393e9378f4efd8180a532289140220346b24ec76e856220dada8b42ad2ae5025f9aa7ec30074a922983886a4697264:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Create/Update PostgreSQL Database events"'
|
||||
|
||||
# digest: 4b0a00483046022100f502f197637ba618bc6c0eee2782bd42c533a75b3ca7fdd1a6d6b61365b5ac3d0221009dbda4ea663b3f03a557a311a9e44b3250d1a6e9af2c83329db2a1a0253167dc:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a00483046022100b0c513d2ae92d433b95a26cd8d64ffdc2c2dafab432c6b309ac62de6fbe5058f022100a7c7cec2f46f40d9925b542381e20bdc3199763963146a1728ab319da314b9c5:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Delete Public IP Address events"'
|
||||
|
||||
# digest: 4b0a00483046022100cb6906c631bfa570dbbacd7675e4e12e03d9f6d1871f1a85ae1b5e069a8258a2022100dcfe6e93e3a9bb56cf450d2d3220c2b26e2c783283abb4cebc7fa5d214192ae1:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a00463044022033dd044ecef06903b4b1999468e278fe23b2c78944e056ced2abe67088c4c1ef02203bee14a8514ff8da565c32d116cd23bfd6846f3a68d19e8741f382810825ea6c:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Create/Update Public IP Address events"'
|
||||
|
||||
# digest: 4b0a004830460221009a8bcf84a15bb1df421d17a27f30705013064f52e847d17ba8c956d99a6bffb102210093d70285fda675a12ce4c7101b37c220039038af6d685fd0160637e0c08a1771:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502202be5a4a2bfa611b69fc79517df7164c88db74f9f14d264ec39f7d9cca5b7e6e5022100dd1eedf832d9786e3077c4d98c92da7f0c58dab10314f9689772a46f2ec809b0:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Update Security Policy events"'
|
||||
|
||||
# digest: 490a00463044022074a848f16d036f8e7f4962561818b0315bcba6c8c440597385c60c7b746298e50220472e8226d9b8e2f66204ba74078296c6242531f8b2ee980b9ca15ba52e422175:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100ebf18f42b25dca158cbb757a670eac30285b208450b4ad344bf7b0ec8216c6fa02200db2eefa4eeaecb035da4c977ffda206c23232b924829327517e49bca53b3a94:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Delete Security Solution events"'
|
||||
|
||||
# digest: 4b0a00483046022100970ac8e526ddac7347d2d15a325cf5e4a6085e744cd2149de4109d2c9f23ddc9022100d598091105da68a0a81504b4527c220938c7e474c87c822a4ac80e7c7b959b5d:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100883cb93276fea808d8950d9b2cdbdb060fc4282068ef304b3ba40e4113f60bb002206d98a31e4287ef5f73b7bf9dc5c03627a20b8a33b2804d61da0894a7ae5fbd7a:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Create/Update Security Solution events"'
|
||||
|
||||
# digest: 490a00463044022078a432eadc818714aed00c5b8b6a39a3e99a63944c7128a61963e7b4c8ff582002203768b14ea0ae6b98684897ee54db3b08e8ec1feaa145af5949ab6fb38be6844f:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a00483046022100e9d8ba6a76da681259be7e60c9c77067ffd2d5d2e029561d34470d1acbd7388f022100ff3a922681cc69fa9146b58cae1f751c2605706b10f00eee7c8f67cd4be93a38:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Rename Azure SQL Database events"'
|
||||
|
||||
# digest: 4a0a00473045022100d652fa77e4df8301b49b17e3ee26742e3b0d0a75a3e26c54bb71c52802b46e74022042717addbb381c25a724c616cb44086b57a7d5150c8b235535db82bbc61c1b30:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a00463044022062e4a18abd3f96e8bd7339bfd5f1bde8472450fe8e8acb5e386eb19e84ab33f10220342ef6803aacb7ba13ff4fbb55f443b454531b5805317bfacc3efd6848b1c6b0:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -55,5 +55,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Create/Update Azure SQL Database events"'
|
||||
|
||||
# digest: 4b0a004830460221009e3a810eacb3be498b373037a64882c5ca7ec67034a17aacc79e7b1f252d53c9022100baeda538b41a8a23433721ad7c67e3f8a8bc7c8b8347ec25b642ffeb5705a4d9:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100fbdb96a4c88b78781eb29b40bc4cedd90de1ff65686b88fe0343e7495ca9a5fc02203e44d71b5ae4dc63846270adb87d822b2fc9be364eb5367bbba28afcbcb1fd77:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Delete Azure SQL Database events"'
|
||||
|
||||
# digest: 4a0a0047304502201ea5338efb6d4931dfa4c0545e6a34a42ccf3125f06bc5ede8aea457e387e890022100ff3abafceb321a4de15b08103d401ec54c3851db4b8de78136138c2f6d5c8dbf:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100cbacf518d5cbe7c56d8c01a3a0f9c5b55d18c8f0b97c84287a117ddb9aecf0690220242e6cfdf9a77ab7c42204c7b7b8b33af06310f67971797ac099aa453242e9b0:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Create/Update/Delete SQL Server Firewall Rule events"'
|
||||
|
||||
# digest: 4a0a00473045022100e23c050db7be41857590cfa5879dd2562c29c0c76c82a433fb2960be613b606402205eb2de156a85cc793aebb89f7a3fbf303a37f43ef4fee527c7d70a10deada824:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100e24349f1fca9911f9b466b86386d7373a58fcee6f740d7da73dd70bd4adc4a74022022993e17bfbb20652e3fe4158d94adb48f02d119173878a02d3085b2cfe4a44d:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Delete Storage Account events"'
|
||||
|
||||
# digest: 4a0a00473045022100f94e0849123653aa0c21d5977c85714b666c8f14a63f09223ee517b00477094f0220769b9e9a2cd7330fe591c31957f6db0e2ed980678d27fa9fb5075bf144284a23:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502205e71de1ab0d9adcac6f6e267f056a7d953053ded1dcf4468759402c58835f8a1022100e0da4926bd854666290f2ea1a76421aa429cad45903bfe7eaa87654904572ba9:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Create/Update Storage Account events"'
|
||||
|
||||
# digest: 4a0a0047304502200fa0c3cee29be286266aa26490a7218f24f6793c4c179f8019133953208cdcbd022100e264ab90700cc01a683b7e7d17969f8b474f3ea8420edbab90c88925e5d47a1a:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402205e3a23ba279a4664f424af8eca5fccade87710c38b02f222d91f0e8edfabd4660220505555ad81d013f7480ebe69e820a39ccd3e2dd80b0e5092e73389bc0ecb208a:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -54,5 +54,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'vm_id + " does not have the correct alert configuration for Create/Update Virtual Machine events"'
|
||||
|
||||
# digest: 4b0a00483046022100b0d3983c6e0061de9ce8a032fd38535656e7637f20596ea1bfe7241ed7a8bda6022100ef5555c6ac73cb2d47bf86319e6e823fcd3dd460700b4437bb60dc452ec86bfe:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a00483046022100dfcdc763db362820afe709e6dbca00cf01a1b63a7809ec3089905dfa9ee50c00022100e979c3eef747d5acde32145f669f1c3a93d34a1d5eb7da0cd4fe87850ea9b63f:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Deallocate Virtual Machine events"'
|
||||
|
||||
# digest: 4a0a004730450221008d84e7648486aee629b24ee18086c552dc5271476e6bb69d4c9e51ac8c39d9ca02201355bfae0b63137296ed3fe22993984c1e845bb6606aa93567c0fe24b28b4450:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a00483046022100b126deb4811fb605caa65eb040d5e1ccda405e6b34eab8457d0621cd7dd86177022100c81894f96e5894eb3a562817bce0650e282a6742d21249a67e0b7e4f1936a185:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Delete Virtual Machine events"'
|
||||
|
||||
# digest: 490a00463044022029729a9056386457b8de41d4fb0c63702118355cda7e5f9a58622b9746a8893e02202286830bfb37b925f309897d4aabf64ec0010825da4aeea4fc834812e1448c84:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100c5f6e958eac08134e39428091f029e9da95d1ae4ec0159e49c12ef55a95bb49c022000b64cc06085dbe85c796ade6dab5ff50229f3b971a12d40a0fe4290aa8d30cd:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the correct alert configuration for Power Off Virtual Machine events"'
|
||||
|
||||
# digest: 4a0a00473045022100c3cfffe7f348f88b12f54b0d1f555b1d9acb3c550379c7b2318dcf1731139a36022036a5fe5d5192930f4cea1f2b388c19e0428d6005b4a161ab6685944270639fc7:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100bed21b58228571321094f88b408aa33214c408e85c3b8d0a3788987b9214080502205091d8830d3ea7bcfac6353c63f1e300875d1156cd99a346472b8f0245369eb3:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -55,5 +55,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- '"$name in $resourceGroup does not use CMK"'
|
||||
|
||||
# digest: 4a0a00473045022100ce7fe0b9a31e3ca8e0092ece7bcd700cb0c64323e856f28f79798d869d738be402200f45ad8b2a975b496f6fd3a52036a4da49a3d1b2a665fee5382b7e67a8d5adf4:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a00463044022007d666063b3b031a1dc0866150991a56c552d91e6fe570ff8b172962cab999ee02202d3ba285cf62ffc74608fdf6d093b3ff83e1c104c1230ba41c9bcd7830290ea0:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -54,5 +54,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " does not use a managed identity"'
|
||||
|
||||
# digest: 4a0a004730450220693a09cb423023db7cfa516777aa4c19514b8b00bbfbcbe712f9e00ecb10f092022100808c9e6184bcf9d31a1518bcaa20c76e67abc050e6703292c2ffd9eb771aa19f:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100e904f02a1a6abdf70876f2539c72a942b46e72b9096e5ce956c177dd56aa5d8a02207aeababd91e00e05b714fba8cb35b5b6ae1f10916f35e6916d3f30cc081e72d9:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " does not have private endpoint connections configured"'
|
||||
|
||||
# digest: 490a00463044022060ea429412764c44d3071f22152b5e099f95385ff827e22e553a2e628a94a1f202200dff81273bcdbe69a493ac0057f8e163771b1b23a8cb811f4e50067b2950e0d1:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402202193979a2311816ab574cf04f464c82c1ebd91b4121e588dfb25464a95d188eb0220237cc1b0d15aa5a8ab279cb9d11f38d146491347d0d0bd8f42fde7b280424c9c:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -58,5 +58,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- '"$name in $resourceGroup has public network access enabled"'
|
||||
|
||||
# digest: 4b0a00483046022100f76c46c4264a3bf40baa855f85ab60367b1415b3322d30660690c626a1f8ad8d022100ae1116fff9546e6fa5855c5f2c7c68c1fad5e3fb6baa65e49635691eca9206d8:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a00483046022100de8c064cd10618c1935bb70fdd10b8426c6a5b0194f6acde2c467586481d3092022100fec0b641e8445405d586c67ebc42a56d0c1bfe872de0c72c815e36d052b25d4b:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " does not have authorized IP ranges configured for AKS API server access"'
|
||||
|
||||
# digest: 4a0a0047304502202d195115e050327438266276d49272ad3dff5910d2ff59c10f732b6a54b49dde02210087e9d9ee71083b037e3f13b5ab64af75c38b35066286e822f826d3fc6f45c9a6:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100bdf13a48790a4d49fcabdcf48a6df24476b55cc291e72f2e31fcb53496c19e3c02206dda4fa2ed186ab3c8ac9dc98854b51611fc876f6bfdb52438b0d3e23332ab0d:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in resource group " + resourceGroup + " is not on the latest Kubernetes API version"'
|
||||
|
||||
# digest: 4a0a0047304502200efb6add4d0fa9ed35ec424c472d33aed7282ef19ce253c75d8524a0f6805049022100a7587d8b8bc3d6499b98d0b5e4fe0e8dfa166c9ccddeccf07d2f4cd8a3ebe13a:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100f57b76ce81c87bf87f7bcff74a6a12e190788790ddbb9db1b91d87511b09496c022073249399fd7892244fd025ad7d363a84b6f475e9266e066020cd8beb56aef17b:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " is using Kubenet instead of Azure CNI"'
|
||||
|
||||
# digest: 4a0a0047304502203eab85dcefc8ec083b77d20f822dc280e51720d0bbc471e13439bfce37439c43022100927943079c781e320702747c42b966ea6cbfdda0ce6421f0f1b582f5e7b3a5c6:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402200c1f0786613afcab7ef8439c2b38e9d928640eb7ba8e7e6c055a61e5aab76d0502202acc8b6ef94311059a05920c9998d965097b301353b57cf62b821c5d4b15fb0b:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -52,5 +52,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " does not have Microsoft Entra ID integration configured"'
|
||||
|
||||
# digest: 4b0a00483046022100d8d5b05b5a669bf0f09e08ab0e07e9ff3c3d1ad95be82cd7cc6cbe5218798cbc022100eee06824ca277cec480b379d0a552007a341cb60bd6410f47c6d27e725853af0:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502206d6c29cd8aa4bb54fac3d4c9a53107ac6a7c249f0bc30b9ab2a9c666a8e9656e022100ab3e315cde391f7089701d128f6f27df0d204abc00d94866b26d763ce05257d1:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- '"$name in $resourceGroup is not using the latest Kubernetes version"'
|
||||
|
||||
# digest: 4a0a0047304502205aef7a2b300f3c26534d58b95e21abfcb3c118ff09746bec7dec102356b2492f022100801f8fe0e6d9bb7937c58505b39d376489bb50f43c014f34bfc546350188949a:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100b2e7b3d51386933b65480f5d614531751137fa6a20e0dcea00dc8fa06a8079c4022025f9c8b9538dda2ce455ec2139422cabc6dbb109c7b01ee7be99e753fe0c4810:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- '"AKS cluster named " + name + " in resource group " + resourceGroup + " is not using a system-assigned managed identity"'
|
||||
|
||||
# digest: 4b0a00483046022100993a1f54c4f211cefea78672f464465f0187d242f172e56a3ad06eefd41ffc9e022100fe299d3f39d70ddad066f6bc1ac8b44200aac7b4430876e5c8440cc6c7b0f44f:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100ac01b4b4b7f8e4b1c218908a6744d82bf60aa4192344b0e05003817e67edb7e002201ccb5124089725f1e735d4dcafeb5ab85d4911de2d81f4c48962b6bb5619cd75:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -75,5 +75,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in resource group " + resourceGroup + " does not have Network Contributor role assigned"'
|
||||
|
||||
# digest: 4b0a00483046022100ac85c2dde6f197e40da9d73f1f9b24a56ebe112f2ed6faeedbbdf2c6decf28f3022100cb8dfd3febd3eba7d477fb4fa9ef85b4ebb3226bfd3a85d67285d274313ed5d9:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022012f89ba52a416adb0ddac27adf630c9f1ca7c0782dcb0a2d7a0a23dc41a96b21022100d6702536b637286fadab13c91e37e897594a889b9561335d31fa2e29bd71f51b:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -55,5 +55,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in resource group " + resourceGroup + " does not use user-assigned managed identities"'
|
||||
|
||||
# digest: 490a00463044022020e4342eb34123e643fbe31a16536e74d59a5822268b5a254a78842ebb84e78c022011a2940ee36eb40791bf628d55efac48fa3b591ea6914c63203fd2052bb2868d:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502200c952edc825c62c2336623a2db82289bcf41d397cd32b477063353d97b71944f02210087d932200e4783eb85b3c40966e7c9c82ee51c2ca300d3fa6c39f81eca4e6e08:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " has RBAC not enabled"'
|
||||
|
||||
# digest: 490a00463044022006236196421d8f6344492147dfd3cb3747f8d8d282aee45f0786b0c03d9d7e1f022049062b4dd4c5868c426ca72424fb3d80102dc28862589c1cba270c1270286ceb:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502204650e2feed9c433ad1897837c438c01ebce108cb284e218fe05f819034b48c3d022100acb11130dcf21735dfd7ce986df19b4a2d051ac92817a702029d137f3ae478d2:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -52,5 +52,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " does not use a private Key Vault for encryption at rest"'
|
||||
|
||||
# digest: 4b0a00483046022100bb6400ea9529e598980b5dd656933dcf6dd21871f13cb7f07373547782b409d2022100dcfd7fcf85ef18c0c3a7e71fbaf366af3893cc5f13c3f07c18f253a87aa62536:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022067e8d5622611de55743abd6b74c9e148e07cb58178799d6c65fdf28e9ce2858a02210087a564a96607e4caf3efba42327a1423105a475f5411de04c80b206298381bc7:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in resource group " + resourceGroup + " does not have HTTP/2 enabled"'
|
||||
|
||||
# digest: 490a004630440220161792893533b49937e9e150af62147de4b743306327988b6c42cbbad4ac5617022053648ab21ea6d3cf1927a448790dc2a0dd2f16563d2f12eb9cd11f2b04b460a7:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100ec315dc114d470de67fd90837c8b566f23d05536cbd717e92bce5057a591adaf02204c110606cb46589375b512fd82ca829c61c09f724015b92cc207cd71e6f5c1a4:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -79,5 +79,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- stderr
|
||||
|
||||
# digest: 490a0046304402203f1fb99c7d9a49beda694d62ac9affc43f6e3663379d47c4c045460bbe02aeb10220211fc0f3bd29e5bbb3ed62dbaeb34e48f57959bdf3a62ad1fb7cc4036c0c4a57:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100aa4e216fce9dd608822dade4d7b91168264a61f87933f87865fda2000b4a5f8b0220438a74f538afa769deae2de7d6dd0bde41590236b2eabb2a5735e4c8acf6c960:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -70,5 +70,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " has named values exposed in plaintext"'
|
||||
|
||||
# digest: 4b0a004830460221009bfc48259c6b3c6b4ff9c8c7b840be0c9a878d2d65bee6737e50636ee9bf1428022100a7d176262ef4b8167179771954c1832f332fef64226d2652079c8120daf62447:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a00483046022100b483172f54ed16d0f98063f53613a90ac20a3df4789394a95c706de7fb2a5563022100d8a65df74663bcb1ee7108e15ef1485d7f224d215b6c8d78b46be5c6ac7e0125:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in resource group " + resourceGroup + " has public network access enabled, which should be disabled."'
|
||||
|
||||
# digest: 4a0a0047304502203627d111b8d992b0378aa3f14fa209d5c44247a8d4c7c8a4e9647f7f4e04de2d0221009b18dac63aee7a78a709a399a55f2191d358aaa28b7f20b62791038ccf1d91d2:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402207bbd30ab04b847d2afc9435af2b414644d4f6ae0df1047ccf2580a1c596b8a9a02204d5d48b1c9fe4c65cd8c2ea1de2e2d0f63e60796a03f02a394587cb903c1e929:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'resource + " in " + resourceGroup + " does not have resource logs configured for Azure API Management services"'
|
||||
|
||||
# digest: 4a0a00473045022100a3b074c6def6343a3cd46564d8bbc2c44791c576c7b6a4fb82935b3320e42e1f02200c600f460a417fc2663dc4538bb229300eb209775a53200954874cd8d96d55d7:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a004630440220609349f2577a25bdd7d4037bf38ac703272123e2733753824033961b1997ddeb0220315ac473c7a4ad24c96e1ffec267e9b912ddc8aff12d794e67416754bb98f5cb:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -54,5 +54,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " does not have a system-assigned managed identity enabled"'
|
||||
|
||||
# digest: 4a0a00473045022100cf182946a01ab2f88381fc72b0a2aedae5750dc7c4960a569947a7393fff0ee40220075c06b73d2540b458df26a51aeef802a9633c2b6f1577a5fdc070fc238f4659:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a004730450221009ab139cee76ef75a5b9d95c0b417a9e0e0c1e97347510debd2121ac2605efcdd02200614db6170562c852763d9ebf398b9879ba4faf2f99ea07db902beaff36c4f37:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -54,5 +54,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in resource group " + resourceGroup + " is configured with weak TLS protocols"'
|
||||
|
||||
# digest: 490a00463044022042dda664d6be608860998669fefbd62cb938dfd423c13fcff5dd07b99f4a28590220148a40969060e8435327c8f6966b6b96ae75d6ebaeab8a731067de372c883e49:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502204ce8881feed7aa37b2eb7f4599103d58c2bf74b69b59111a48c403695a37a64a022100b630fecbc17691ea5d8598c3116ea83100e3a7fbfe26f43926a83e1a7b573ed3:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -54,5 +54,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " does not use user-assigned managed identities"'
|
||||
|
||||
# digest: 4a0a00473045022100a8dca18c394bd7d3cb509f1f810603ce4fbe9d708a9ec6c64640cda52b526f3902202c042678abc356061086bdcb32ab6accda2bfc821273ed8f0130420de4e3b618:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402205b8b97c1f8d0d79b473361611f009fff298c17590b4f6479443c63314c09dca802207344dc9308b7d88a0ab6440d7e615295720332aba0ae9685a02306ec9ad2bd6c:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -50,5 +50,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- '"Always On feature is disabled for WebApp with ID: " + id'
|
||||
|
||||
# digest: 4a0a00473045022043f9c14c374ac09fcfae4274d99ced25d073c7b7bfa688a6604740991e0a1700022100969e58426dcee6acbe487d223975f28186d896d9c001d6539ed1df1f0f0db206:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100bff579fc0dc99faf41953d61a80646e160473f71a98e5e73db9d2354cf18fbf6022032669145eafa3cbec1349c7aa70094a48fab4a6efa327970b5a45109fe68ef6d:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -51,5 +51,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have App Service Authentication enabled"'
|
||||
|
||||
# digest: 4a0a00473045022100ab68f2fefc9f78bbc1e0bf6e6c691c322e2bbb03992d0cff639fc25729c98dbc02203042c43ffc89c31333d711ef292b3855105a02ff769f90ff8cc7e1a628f5b248:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502204048652cd8622af797aa47ed031f15d9250605f98108e39d10496d097e5e7810022100d19536e8b73129839dd1a0c3454a958c8ab212ddfd0d6006687fc7eeb65591a9:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " does not have automated backups enabled"'
|
||||
|
||||
# digest: 4a0a00473045022009af0f7670f007d5cd7fb5b409a04de9e1090f5864358a2384a9761ad3c87a5b022100fedac0c065ba8b733fa2259b40143596ddc6c7449cd0b1097a793858d15810cf:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a00463044022003bf04c5b011a04c6002bcd2f07d378140e59ec341e7d271681e59499f5e455b02203f743bbfd4d5c534e349d0b0b801bc0912f8104257090a4969d2e2cdf060feb4:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " does not have a backup retention period configured"'
|
||||
|
||||
# digest: 4a0a00473045022100db0ef61635b5fb61532d008ea01260955950ddc9703e728f538a5eddacdcb02d0220179880cd62013ca8c8a3790d87ac5ba6dd52eb286a504580fe2a080285e952fc:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022048f108dd37000e5b488a64ecf97df7765f4b05c718bd7ed75a228173559b35bd022100b7e8fab784136dc41746b0750183374c6652528f8a0d48a7da673e01bd6271e7:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -50,5 +50,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- '"Client certificate not required for " + id'
|
||||
|
||||
# digest: 4b0a00483046022100a21e589a84c22e6614f282019e76c32a807fab6ea42962352b05340f435bcbcd022100990e81f156fda0150e65e718f64d30cd1616f4284c828469c606730dc5b92e65:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502210089c327a425b7b4698732549dee4e2dfbf8cbb47534662e96a4c867204cfb704b02202cec66d5f9c2ead85119c3034a84983a2f481821b173f7acdc2b2f3c8b317abe:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -52,5 +52,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have Microsoft Entra ID configured"'
|
||||
|
||||
# digest: 4a0a00473045022100e9a51002211cf11816e8492635cd2f62832f395fdaa8891f750229a94d161caa02206f28d6e6e13215aa6079d085e112b23358d0af478be26b344bc87142ad275ca1:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402201ad92dcd4d8ceccb590a8024d1918950d43955758ae2ca00997549752018a7c70220152652c4ce7abcc621532e0e7922663cefb76ab95f4bfd5fb009edd72df9da36:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -50,5 +50,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'ids + " has FTP deployment enabled, which is not secure"'
|
||||
|
||||
# digest: 490a0046304402205790fa13266e97015dc9ff31a212030672e5dc760e64eeeb9c789707d96629cf022010ad2d3cd7d0718b30b04863737fecf384a88a6f1518e9c4a2999bddb67a71cf:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a0048304602210093e3a5c33cf1a714c55a6b7bf80003c6e13b3f67eed6016982faa02b61de57d6022100afdaa61b09bea49da0097017a351d4b5b1b84c8524d552778e75f393580079e3:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -50,5 +50,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not enforce FTPS-only access"'
|
||||
|
||||
# digest: 490a0046304402207bf907a84c8329c050754273ecdc227fb7bc31f3429821943e7b09fdc54e3c9f02200d644ddee083527f7c05d07d39d60fc5d1e0eb1ace08093610fb9da6a992339a:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100bffc4b6557028bdd0a57afe3c11f972138a5db19c82c8a769430654ab29646be02203cf535c2d7d036d3bc7f383e667c33cecee8c6fb6605bf47c57b39d368a71336:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -50,5 +50,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have HTTP/2 enabled"'
|
||||
|
||||
# digest: 4b0a0048304602210084c38e5b0182b8c3c8abee14dcd6fe8a110d2ac238746cdd13f3d60d3aa2327b0221009fd32c803ff2f56eacc0b63ea46098d2e3a82cfc3b1d46138ff48afdadae2b4b:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402206c4c4fbbcb9d908f37b19470635dc551403a0d2edc1fd3bc6ebdf176d25f1bda02203f34f18e25317793c1444b78a53906bfec33da137c9deda61cf2902a68ca0789:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -51,5 +51,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not enforce HTTPS-only traffic"'
|
||||
|
||||
# digest: 4a0a0047304502206a0a5bd6f4f0799eacd49994ea778c4b3ceaea060fd0cb67a2c605aafa3801e9022100dce856027bcda525c0ea4242536232da1b695d22b837e18b45b501ee1d4015de:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a004630440220775ebb1ddb2f54ef10efa3ebe2ff5bf95700fc4ea02e9350743ce58278a7081402202a99faccc5029fddbf474bc9f38c71da9053dcda8b486f598fafb3810ac68093:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -55,5 +55,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " in " + resourceGroup + " does not have Application Insights enabled"'
|
||||
|
||||
# digest: 4a0a00473045022067b6db8207620581351eed2bb02ef36148a15cb74cec7004d000faf0004707d902210080fdba3e4b62a01a11523b9ac91ed386ea6beff417a1ad1cd3ba6cfca944a9fc:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402201cc0d7288bd9db9b3382ac0a902fe358a4b77aff373a49cde740e4235919da6a02204c9716302a0f1c05ed6a128c65ed2ae3a95a3bd3d4231bd4fb090cfc510723fd:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -50,5 +50,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " has remote debugging enabled."'
|
||||
|
||||
# digest: 490a0046304402200dae6403e63af4a05cb2f3c385f5f892db59ad7837d9052aa745178a0262493f02203c4b7d7006bb07e4c4d14936708ea2eef929cba5514b033e23199b99121f8142:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502210082df58784ec583fd9e5569f26bfaf1c19c284326e0352cc3c6f2808d1ea04611022027c17f8b9b6ae7df0b69beec4b65261cfd73dd67404917e61b9fdb6733b4d4da:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -52,5 +52,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have the latest TLS version configured"'
|
||||
|
||||
# digest: 4a0a0047304502206e2f497dec6d71234df4aafeae8f0494fa275ae63510fb3f2a692c24a4c19045022100b2518d5999184e0f173e77b94bb3f9bd37b03f226478c2da81651d1af067cd6a:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502205b893e41caac893c10fa30a952a55004973238e31f21bb1bf2eea5e458f43b6f022100be4117c46dd7103ef5f8ae7a8aed45224efa375088a3044d75159f29c0a245c1:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -34,5 +34,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- '"Azure CLI is properly configured for environment \"" + environmentname + "\"."'
|
||||
|
||||
# digest: 4a0a0047304502204d8e6dcc0b3ccfcff1fe0a8ca84b7591fbed8d92509c86fedd312008f7e4199e022100c9de186a3632c52b9b96a7207a0df1c3f3289422d38e3c6ec4330001acfd3995:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 480a00453043021f7998d81c98cbedbcff57a1c5a0f271fb8176e4c9a157ce00e61eb3e80e570602200c7b76d9663d6014010945799cb750138b03b45f64d896118f00402e407c6fff:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -50,5 +50,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " does not have Automatic Failover enabled"'
|
||||
|
||||
# digest: 4a0a004730450220373cad5b85c8c4b11eac085d76d3c3f6e16487c80348499c52c9138341a4fe59022100ea569b9cb8c651067456b44b5086cc47e2b19f10d55a99ac0d3dac246d20f52c:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502206c5ddde87d7e863ee0cfa81fe53ec412df22118d7ba3724b2426fdbf85a41c5902210091b192a93529ee999d7fcc49cf687b28ed1024661b91f050bed54ba0d3bddfdc:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'id + " is unrestricted with default network access"'
|
||||
|
||||
# digest: 4a0a00473045022100d77ac65a0f1d9aa852c5bf9e6d6ec14e25195df21e6b3bd07d676884aa8a3b24022049afbe86c5de7d001259f0cb641ee9731f1af4b47f2aeb569d19992ba8b85976:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022006b1d80bb61d8cf42efe59a7608b919ca1629e977819de232bc9267154215b59022100ea01fef4138cb97d594c770c6b72669cdb0b4bafec4b04d0cd0816470d640fa4:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -52,5 +52,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " has no function keys configured for HTTP-triggered functions"'
|
||||
|
||||
# digest: 4b0a00483046022100cb56fee0d3e34abc0456bfba710038f7eaf7ea9bd1bde35c7a5fef6921bd17f10221008064977fa5b4998d9e8fc11e59f742e79b5092cdb718f72a56e04ab04c6a778d:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a004630440220051ba1486e722dd69f17ae28c1fce048d555cb433d1f6b4d8d0d69b375aeb91d02200d9ce1ccf1d48505ff431ffe4450d0727545a09bbdbbb0961083a7fc44e5d159:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -78,5 +78,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'functionName + " has admin privileges with role " + roleAssignment + " in resource group " + resourceGroup'
|
||||
|
||||
# digest: 4b0a00483046022100da5b5edd2e3b4b19b6f67f8fde5cb24d697f569d4ba00bd7380b49ac75939fcf022100d5f5be5184f18dfd044bb0d9799b67e649a3770537f4fed1de21443a51c86e3c:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a004830460221009fc168fcd150586fd2a47ffa60ca6e707d0660429c541ae10c9bc33c717b3196022100bbc7046ef910ae9adb0c03be75f9618908a9544bc42131eded93d548fca39552:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -59,5 +59,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " does not have Application Insights integration enabled"'
|
||||
|
||||
# digest: 4b0a00483046022100dd09e13080c30ad65c0e82bf547af22027e3d540723c3cbac972c097144d1a1a022100b55bd9c1a7749fb2d1f70fb82449484caadb4d2c5e2511d9ac787377eb065c8f:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402202c00f10e8c72bde3b21ff58233646bd5850099ff2a0e0cf67ea8f565bd76940f02204e1a64a66609263e1f8310d8c171ed81170211f07d9bf390d915c33feaf52af2:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -52,5 +52,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " is publicly accessible and should restrict network access"'
|
||||
|
||||
# digest: 490a0046304402206f9a3a9682278296447a116b27ef3cfe343e26f7a8cdcfbfe92bc06a4793bdfe02200c6033f0215371dcb88213b6fdb7900b01625038d611d2aec42e033248f7c5bc:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100f092e5de38295307d89891cdc2c693cd32ccad20c1fa88ec3e96519a07e6b47602203afcb47d608e528a93e570d48ea218cfa703155995cdb267c9a7843849f265a2:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " does not use system-assigned managed identity"'
|
||||
|
||||
# digest: 4b0a00483046022100a23424c8af447c7ab9e797d91ae67409cb0e7886fe845c131a6112a7f0c0ed5e022100c9fbe1cf53cc9e3c561bc9603b7dd70233c15097fa811856f776bb7a11225a77:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502205de3e7aff22b3a8c4f4d108a401ce4f4c48d56be1eff28393319549ca37c0d56022100accce22826592f7a7a92691a3c86a5e18ae4fa9087fd4c3bd6b16231cc3a1b39:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " does not use user-assigned managed identity"'
|
||||
|
||||
# digest: 4b0a00483046022100b356c09c3b2977f4fb74d58f007b172e68716648740507e33635d1a27eea7aad022100bcc783c6cfe98cb1f2330dfaa59426b10aee1d1556a848c6ebe161ff742e9ca9:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502201c59a405f37a5ce477e4dd3a794d0e260023fc120535f87583fc5c6b9533ace2022100cb83928f51e238087025e2caf8a685f7684fc20b6a47647e76afc6f00dd41a2a:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -52,5 +52,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " does not have Virtual Network Integration enabled"'
|
||||
|
||||
# digest: 4a0a0047304502202a2c51897b8f9a78e3c87b95e72f2381a55e21b9d2a4286287dc819365179bbe022100ec8d7b85f016431cbfba52e3246e11a2ce3961ada5c58d1fe95f9871a2dd4f70:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402204149d17f8e96c0e2d6e4a14c17f79d3896a9d89ce1840a0d44ec6b0ff4513bed02202b7f3bf1c1989e51901d14199202481937da59e12606069c02d5fb4ddf0888d2:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -67,5 +67,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'vaultName + " CMK " + keyId + " is not properly tagged as part of the app-tier resource"'
|
||||
|
||||
# digest: 4a0a0047304502201a0a0de711247806e610912a21185ceaf36bd39b19e58b3dfa4da369609b762d022100d7cb29c263799b22509f550b343e5bc0d9d5807d985577c7e90929cab06fea5d:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502205a8bce2af751faca4928f5b3f99ebb588b963bb5b8dd14def9d9926a8d0c4d89022100f9c28f4111a551b0badb02bfdfba256f8953c5df857f9f8d87499efbe4a0ae80:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -67,5 +67,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'vaultName + " key " + keyId + " does not have required database-tier tags"'
|
||||
|
||||
# digest: 4b0a00483046022100858fcf7db58156fa7cd12e21e18de958e2c5dd9cc1a68c91b864a436d75e375d022100c80ad409b56aa95637c28f7b7eb44a7939ed1011e288f61b46a3cbe73d61ed72:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a004830460221009fb85fecd513e6cfee19b28bd561302c8c79644831a860f38f96fe78176d28280221009c5e681f7bdc4abc7a3bdf2bb6681f3eb6aaa0654b0967b10a8a6f0a259ce962:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -50,5 +50,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'vaultName + " does not have AuditEvent logging enabled"'
|
||||
|
||||
# digest: 4a0a0047304502210086904fdf9a9cdecb76cfb66ecb66b383671a53b02e1500fa1ade5c613ce8bc6c022006298db27a54e11ab4eded1ef8b22947bc73e6346ea511c10e8ef7eb525ad20a:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a004730450220353e61abb4a325f55307255d1fabedd37b262e69ab8317e43de9ca86a59cc0c2022100fb9605ad1afd2c675b82d9cd343aff03431bde074e179cc90dfbc5c997c75135:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -67,5 +67,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'vaultName + " SSL/TLS certificate " + certificateId + " uses an unapproved key type"'
|
||||
|
||||
# digest: 4a0a00473045022100d18c919d5fbd8e4b7d5cacd0148573359861bd57a403bcd60679067211cd4099022037ad7257341a504a60308ecdde1016945c51f2fb615d49e07aad3fb38c7a99dc:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100ff67ccbfcdf2f67b26a4cb0598a96aad6426fb997b369e9284d5c9db30a1840102200c7ea96af84ab4b3a6109ebeebbaca7c44d2c9ec3dee30d0fb8269fed850aec2:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -67,5 +67,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'vaultName + " SSL/TLS certificate " + certificateId + " does not have Certificate Transparency enabled"'
|
||||
|
||||
# digest: 4a0a00473045022024c09ac6bd46d55cd1a1334bcacaab0a063b71784a0a241f0b79be19985564fe022100ce53d48b42250cc23a0600e837b60a466e8853379f0def04a6e4a6d5d5df28fd:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a004730450220683ba37722ca45d1934be3ff6f8ab14693e9ddb0dccd08b766d470f942d52999022100bff340bf0fbf8c78a04c31e09f667be68223c76d98560caf9257ecfc93ada837:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -73,5 +73,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'vaultName + " certificate ID " + certificateID + " has insufficient auto-renewal period"'
|
||||
|
||||
# digest: 4a0a00473045022031af5e8d7a3b3cf155d7460c6b480d002d300359131c27b08dd5c9175d5968f2022100a5a5a16433d74e43257a5c9644b435a8cfdeda2970cacc86edd95b15ce4e0716:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a0046304402202127e233ea3d71106e20fb39c8eb2d721b18f922c5f3e764835970fdce1012130220412615b4bff5bf2a27dc0388030c64e35ac1239691f9331aaa55127f9d0420d0:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -51,5 +51,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'vaultName + " is configured to allow unrestricted Key Vault network access"'
|
||||
|
||||
# digest: 4b0a00483046022100a3c8d8442c1e8a721c2af454d0323921f573e9497fda7d45ee63824c0f64d5ab0221009cae67e2c523822801644fdaf31cfb1b51e91b1881d13266a8eb9e3968d625a1:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a00483046022100ba89ba1133e34e6e915d6f060726890493382b27a8a1d45fd4d584bd206ef441022100d34b6b2093b4f20d037b5de692f043431e5286d2e5d79c674c9aac52eb6cdcb5:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -52,5 +52,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'name + " is not configured for recoverability with both Soft Delete and Do Not Purge enabled"'
|
||||
|
||||
# digest: 4a0a00473045022007412ee9a091484aae2141130a049d217368dd2cee6b71019513d427e8ba1090022100895620640e2ccdb77e2c10a060317b19b5e34266ff70fc93e004531b794c1c27:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 490a00463044022063eb085bcfe994da909b202ad06f08cb5e5115843353f9aec6afa5e3c84880e402206038011775770d69f27eeb8768cd889a81d43f48188e408d64658ed4f860db02:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -67,5 +67,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'vaultName + " SSL certificate " + certificateId + " does not have auto-renewal enabled"'
|
||||
|
||||
# digest: 4a0a00473045022100c4010df4ca1feb5f5b1b5bf0498b94902ccd8d81bf70c23830a7441a61647528022037996f29976ab396d53c2c2067b98da727a472f4317455c192f800a143b46fdb:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100eaba9b1cb737bcc10c37e0da3c356e2bf155516a76425048ac340133e16ac7d8022000b4b3e984331557c9bcd70aad8ab518dda91a5bcda644e9f564eabea6beef15:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -50,5 +50,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'vaultName + " does not allow trusted Microsoft services to bypass the firewall"'
|
||||
|
||||
# digest: 4b0a00483046022100db38114121606825695b49674acc83830bac5e1165f9324a190ae30a8cd3ebb40221009115ffe4f3d540d8f059deefb265ffe001d245aed668806a74d98df486bd6e59:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502205948cabf1815a1bfc5bf2c2a70b04633675f27b6f1b676e778d46156b42972e5022100fa8b9058a8be3e81a79539053195be628e24e7db4593421bff4d88660b9ecfed:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -56,5 +56,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'resource + " does not have the required resource lock level"'
|
||||
|
||||
# digest: 490a0046304402204437c761f42b3808cf8e0c42ad3a475b0007f9f6ab01a62b9e66618f496c56d8022053587c2d5bafbc5f86aa568a44d3a95a57c3833b954a572ac5824f64c7ed8575:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100a66c56bb8c4689e8da5ddaddfbd766c5c471fe55cd397a53151d36b3814e97f2022048e3e15b7c350dbfa6e35b215243277909d6707b3dac45d3397a6ed176f9300e:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -50,5 +50,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'resource + " does not have Diagnostic Logs enabled"'
|
||||
|
||||
# digest: 4a0a0047304502206e1ddd3e4ced3baf532f2b47771e2d6803bb0caa2b711e23875faed5c366cd97022100dc4b8590a1d9442578435d0bdacba516bc7a21948079e3823d1ad691eee7eada:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502201988ab1215b2ca2134560373bad147b4315c7a736c11b707e29df1596e6c691d0221008c2aa81f1bab5e0fd62f382dca2396938dcc4bdea21b8d758a706d0f6ae67e3f:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -30,5 +30,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- '"The configuration of the verified diagnostic setting for “Administrative”, “Security”, “Alert”, and “Policy” is not compliant."'
|
||||
|
||||
# digest: 4a0a00473045022100f7da8f2f8323f2b62f1478c84e94a28354b25102cf918cc140e6790e9834ecb00220343f53db06f5654cacfca86337441011e2afdf5f054805df15ca88534d0fe78f:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a00483046022100ffacb88b1d3a6239769fdfaeda7983d85fc6f444dad379a9df6b2c14f64a4629022100a863e8e1f23f65757d57dffdad3bc973ccca4b661c5681306bc5f276fb65062a:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -53,5 +53,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'profileName + " missing critical activity categories in log-profile configuration"'
|
||||
|
||||
# digest: 4b0a00483046022100f13ca30a029a5afa111e4811bc1cb7f8392ce765086f39802cb9618cfd08ba5c022100ba0f548b21a5cf01a493391a87b8b9aaf72edc7426d8bc4d553726a8ea6ced07:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a004830460221009c6620e6c06edb03355bf2d6abeebed3f7308abd656ed94f4d8537d3021392ce022100dcf8f2b38b3bea119cacbb427d8735146e92fcf91f599b2b8310dc40da50a200:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -30,5 +30,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- '"Azure Monitor Diagnostic Settings for Subscription Activity Log Export are not configured."'
|
||||
|
||||
# digest: 4b0a00483046022100c046b87af6a192d7b5ece1d3a832cf15a9a4acb21299bedbbb3e2f6e33c746d3022100ec10ba03d9b6bfccd3f006aac89a48d82a169766c2eb477ee269ed5d2acda1df:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a0047304502201beeae0368ad9e358c55f3337c6dd75d5eada2f2798fce3a719f2339273598f2022100955f605f5e73592c777ded6e85b113ea06416b64118eca587907422e873072e0:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -30,5 +30,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- '"Azure Network Watcher is not enabled in all locations."'
|
||||
|
||||
# digest: 4b0a004830460221009d1e8cceffdb95d81c5b55451befd3987d3b7d419d41d5b8162eefb872719160022100cb43326ceb9a5a28fdf0df810bb04bd712259d6214f70ee9e60adbb43c5975b8:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a004830460221009a6db58d8ceddd4b44781e218a521b1bdd23da842a620499fcbfe29a49809c3902210099a40b73113d2d17f0e4b50f19f82c9e73e7dadec69c5672914a65b4c8126ab4:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -52,5 +52,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'nsg + " has IP forwarding enabled"'
|
||||
|
||||
# digest: 490a004630440220169b854b1a20da012006653b4a836b6895b8f85eec073c661b2e95ddd8921447022050b7e8bafbe5e4c4696a832fc1619168b5bb5e3fa2bf092e1ac639e281979bc7:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022100f225700682bb832bc04e025ab0194e66cb82ca81f5d7946db798429e394d0a0b022067ba6b9ebf3b7e2a0922a6fa8ae79c2c28473f41c8caf5ab9ca62ebf344fc020:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -54,5 +54,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'nsg + " has unrestricted access on TCP port 445"'
|
||||
|
||||
# digest: 4a0a00473045022100d44c8e034009945d9377355e9ab31a46e520a81acb345e1c692f6613fd4ef1fa02201d7b9ef45f2c210185fd617457d5b4c8ef5b558f53d218e2bfb3379668839e67:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4a0a00473045022006b3a3cc5167793e457e865679627f8a0e89fbf4f681fdfa502096252352c4c0022100f470eeee36459ddfc5ea9af68ff0267524bc67d4ab2ca34ecd8b6647dac45dc4:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -54,5 +54,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'nsg + " has unrestricted access on TCP and UDP port 53"'
|
||||
|
||||
# digest: 4a0a00473045022100836911a8f9e34d24ca1fd6127a23075efe744475e80b8d3a5a81196976fce72502204cc359976ed91bf25d5e3f5393c72d08da80741b54180b1548177084454373c0:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a004830460221008b8f04054777f77d5380360bc515531774a4ad7e063edabe1619fd600aad455d0221009a10b51064b5f63c339c89146773b5e3c4fc834fd4fb3d609a3387c38a2b5d2d:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -54,5 +54,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'nsg + " has unrestricted access on TCP ports 20 and 21"'
|
||||
|
||||
# digest: 4a0a00473045022100ee8eae362d156912e5d10c66b9ac4762d6b3885bdb14637503ccef0ee220d628022005f671e6d48abea8c73a36b83a74faf1c099814d5ce2c83133aa121552ff01fa:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a004830460221009e68a095261b45aa301f5d0f011e86db0bc1556a09e3741096ddabb5b0887d48022100d4223b32fcfa29496206d92f1bee07fc10371a92e6da1b127389ccd3d9a737af:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -54,5 +54,4 @@ code:
|
|||
- type: dsl
|
||||
dsl:
|
||||
- 'nsg + " has unrestricted access on TCP port 80"'
|
||||
|
||||
# digest: 4b0a00483046022100ee685537ac75f10d6194ef5ed74c1eae16d0a5d5ddbd423bac685edeb76bd15c02210083664dde1a46a65c28eb1691b153d9a386053f12675340c5d261fdc4dbe09223:922c64590222798bb761d5b6d8e72950
|
||||
# digest: 4b0a004830460221008c5583df5db98deb7ebd96efeb4182498e5a605c0c4573126b79d953836fa6b5022100f6879fe80971c04071bffd187b2e55cc129f43b1e479f9219d09da1ef9d9de1e:922c64590222798bb761d5b6d8e72950
|
||||
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue