storage

Checks

• allow-microsoft-service-bypass Trusted Microsoft Services should have bypass access to Storage accounts

• default-action-deny The default action on Storage account network rules should be set to deny

• enforce-https Storage accounts should be configured to only accept transfers that are over secure connections

• no-public-access Storage containers in blob storage mode should not have public access

• queue-services-logging-enabled When using Queue Services for a storage account, logging should be enabled.

• use-secure-tls-policy The minimum TLS version for Storage Accounts should be TLS1_2