standard
turbot/azure_compliance

Trigger: Detect & correct Storage Accounts with minimum TLS version less than 1.2

Detect Storage Accounts with minimum TLS version less than 1.2 and then enable 1.2 TLS version.

Query

select
concat(
sa.id,
' [',
sa.subscription_id,
'/',
sa.resource_group,
']'
) as title,
sa.id as id,
sa.name,
sa.resource_group,
sa.subscription_id,
sa._ctx ->> 'connection_name' as conn
from
azure_storage_account as sa,
azure_subscription as sub
where
sa.minimum_tls_version <> 'TLS1_2'
and sub.subscription_id = sa.subscription_id;

Schedule

15m

Tags

category = Compliance
plugin = azure
service = Azure/Storage