Control: Storage accounts should restrict network access

Description

Network access to storage accounts should be restricted. Configure network rules so only applications from allowed networks can access the storage account. To allow connections from specific internet or on-premises clients, access can be granted to traffic from specific Azure virtual networks or to public internet IP address ranges.

Usage

Run the control in your terminal:

powerpipe control run azure_compliance.control.storage_account_default_network_access_rule_denied

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run azure_compliance.control.storage_account_default_network_access_rule_denied --share

SQL

This control uses a named query:

storage_account_default_network_access_rule_denied

Control: Storage accounts should restrict network access

Description

Usage

SQL

Tags