PSRule.Rules.Azure icon indicating copy to clipboard operation
PSRule.Rules.Azure copied to clipboard
verified publisher icon Azure

[RULE] Disable cosmos account public access

Open BernieWhite opened this issue 1 year ago • 0 comments

Existing rule

No response

Suggested rule

Cosmos DB accounts should not be exposed as public endpoints. Use the service firewall to only permit private network access to the account.

Pillar

Security

Additional context

  • https://learn.microsoft.com/en-us/azure/cosmos-db/how-to-configure-private-endpoints?tabs=arm-bicep
  • https://learn.microsoft.com/en-us/azure/templates/microsoft.documentdb/databaseaccounts?pivots=deployment-language-bicep

BernieWhite avatar Feb 23 '24 14:02 BernieWhite