Azure App Services Security Checks
All security checks Aether365 performs for Azure App Services.
| ID | Title | Severity | Framework |
|---|---|---|---|
| AZURE.102 | Ensure that 'Basic Authentication' is 'Disabled' | Medium | CIS Microsoft Azure Foundations |
| AZURE.103 | Ensure Azure Key Vaults are Used to Store Secrets | Low | CIS Microsoft Azure Foundations |
| AZURE.104 | Ensure that 'Remote debugging' is set to 'Off' | Low | CIS Microsoft Azure Foundations |
| AZURE.105 | Ensure App Service Authentication is set up for apps in Azure App Service | Medium | CIS Microsoft Azure Foundations |
| AZURE.106 | Ensure that Register with Entra ID is enabled on App Service | Medium | CIS Microsoft Azure Foundations |
| AZURE.107 | Ensure 'FTP State' is set to 'FTPS Only' or 'Disabled' | Medium | CIS Microsoft Azure Foundations |
| AZURE.108 | Ensure 'HTTPS Only' is set to On | Medium | CIS Microsoft Azure Foundations |
| AZURE.109 | Ensure that 'HTTP20enabled' is set to 'true' | Low | CIS Microsoft Azure Foundations |
| AZURE.110 | Ensure that 'Java version' is currently supported (if in use) | Medium | CIS Microsoft Azure Foundations |
| AZURE.111 | Ensure that 'PHP version' is currently supported (if in use) | Medium | CIS Microsoft Azure Foundations |
| AZURE.112 | Ensure that 'Python version' is currently supported (if in use) | Medium | CIS Microsoft Azure Foundations |
| AZURE.113 | Ensure Web App is using the latest version of TLS encryption | Medium | CIS Microsoft Azure Foundations |