Control: Only secure connections to your Azure Cache for Redis should be enabled
Description
Audit enabling of only connections via SSL to Azure Cache for Redis. Use of secure connections ensures authentication between the server and the service and protects data in transit from network layer attacks such as man-in-the-middle, eavesdropping, and session-hijacking.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.redis_cache_ssl_enabledSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.redis_cache_ssl_enabled --shareSQL
This control uses a named query:
select redis.id as resource, case when enable_non_ssl_port then 'alarm' else 'ok' end as status, case when enable_non_ssl_port then redis.name || ' secure connections disabled.' else redis.name || ' secure connections enabled.' end as reason , redis.resource_group as resource_group , sub.display_name as subscriptionfrom azure_redis_cache as redis, azure_subscription as subwhere sub.subscription_id = redis.subscription_id;