Storage containers storing activity logs should only be accessible by authorized personnel

azure.storage
이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

Storage account containers containing activity log exports should not be publicly accessible. Allowing public access to activity log content may help an adversary identify weaknesses in the affected account’s usage or configuration.

Remediation

From the console

  1. Search for Storage Accounts in the Azure Portal.
  2. Click on the storage account name.
  3. Click Configuration under Settings.
  4. Select Enabled under Allow Blob public access.
  5. Click Containers under Data Storage on the side panel.
  6. Select the insights-activity-logs container.
  7. Click Change access level and set it to Private (no anonymous access), then click OK.
PREVIEWING: aliciascott/DOCS-9725-Cloudcraft