Blob Containers anonymous access should be restricted

azure.storage
이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

Ensures that Azure Storage Blob Containers are not publicly accessible.

Rationale

Anonymous access to Azure storage blob containers allows unauthenticated users to perform operations against the blob container. Datadog recommends only allowing authenticated users access to storage blobs.

Remediation

Datadog recommends both making the Blob Container private, and blocking public access at the storage account level.

From the Console

Follow the Set the public access level for a container - Azure Console guide to disable anonymous read access with the Azure Console.

Follow the Remediate anonymous public access for the storage account guide to block public access at the storage account level with the Azure Console.

From the Azure CLI

Follow the Set the public access level for a container - Azure CLI guide to disable anonymous read access with the Azure CLI.

Follow the Remediate anonymous public access for the storage account guide to block public access at the storage account level with the Azure CLI.

PREVIEWING: brett.blue/embedded-collector-release