Control: Require encryption on Data Lake Store accounts
Description
This policy ensures encryption is enabled on all Data Lake Store accounts.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.datalake_store_account_encryption_enabledSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.datalake_store_account_encryption_enabled --shareSQL
This control uses a named query:
select b.account_id as resource, case when encryption_state = 'Enabled' then 'ok' else 'alarm' end as status, case when encryption_state = 'Enabled' then b.name || ' encryption enabled.' else b.name || ' encryption disabled.' end as reason , b.resource_group as resource_group , sub.display_name as subscriptionfrom azure_data_lake_store as b, azure_subscription as subwhere sub.subscription_id = b.subscription_id;