Query: storage_account_file_share_smb_channel_encryption_aes_256_gcm

select
  sa.id as resource,
  case
    when f -> 'properties' -> 'protocolSettings' -> 'smb' ->> 'channelEncryption' = 'AES-256-GCM;' then 'ok'
    else 'alarm'
  end as status,
  case
    when f -> 'properties' -> 'protocolSettings' -> 'smb' ->> 'channelEncryption' = 'AES-256-GCM;' then sa.name || ' file share SMB channel encryption set to AES-256-GCM.'
    else sa.name || ' file share SMB channel encryption not set to AES-256-GCM.'
  end as reason
  
  , sa.resource_group as resource_group
  , sub.display_name as subscription
from
  azure_storage_account as sa
  cross join lateral jsonb_array_elements(file_services) as f
  left join azure_subscription sub on sub.subscription_id = sa.subscription_id;