Control: Ensure soft delete is enabled for Azure Storage
Description
The Azure Storage blobs contain data like ePHI, Financial, secret or personal. Erroneously modified or deleted accidentally by an application or other storage account user cause data loss or data unavailability. It is recommended the Azure Storage be made recoverable by enabling soft delete configuration. This is to save and recover data when blobs or blob snapshots are deleted.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.storage_account_soft_delete_enabledSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.storage_account_soft_delete_enabled --shareSQL
This control uses a named query:
storage_account_soft_delete_enabled