Azure Front Door and CDN Profiles
Overview
Critical
0High
0Medium
2Low
5Informational
0Security issues (7)
Severity | Non-Compliance | Region | Resource | Issue | Remediation | Read more | Action |
---|---|---|---|---|---|---|---|
Medium | PCI DSS 4.2 HIPAA (Encryption) | global | test-prevasio-verizon-endpoint | CDN Profile endpoint allows insecure HTTP origin. | To fulfill HIPAA and PCI DSS requirements on strong cryptographic and security protocols for transmitting user data, enable HTTPS and disable HTTP for each custom origin endpoint for each CDN Profile. | More info | |
Low | CIS 5.3 PCI DSS 10.2 HIPAA (Audit) | global | test-prevasio-verizon-endpoint | CDN Profile endpoint has no diagnostic settings. | To export basic usage metrics from your CDN endpoint to different sources, ensure that diagnostic logging is enabled for each CDN endpoint for each CDN Profile. | More info | |
Medium | PCI DSS 4.2 HIPAA (Encryption) | global | test-cdn-endpoint-prevasio | CDN Profile endpoint allows insecure HTTP origin. | To fulfill HIPAA and PCI DSS requirements on strong cryptographic and security protocols for transmitting user data, enable HTTPS and disable HTTP for each custom origin endpoint for each CDN Profile. | More info | |
Low | CIS 5.3 PCI DSS 10.2 HIPAA (Audit) | global | test-cdn-endpoint-prevasio | CDN Profile endpoint has no diagnostic settings. | To export basic usage metrics from your CDN endpoint to different sources, ensure that diagnostic logging is enabled for each CDN endpoint for each CDN Profile. | More info | |
Low | CIS 10.1 | global | test-front-door | CDN Profile does not have the Lock set up. | Locks can help prevent accidental and malicious changes or deletion. Ensure that resource Locks are set for mission-critical Azure resources. | More info | |
Low | CIS 10.1 | global | test-cdn | CDN Profile does not have the Lock set up. | Locks can help prevent accidental and malicious changes or deletion. Ensure that resource Locks are set for mission-critical Azure resources. | More info | |
Low | CIS 10.1 | global | test-prevasio-verizon | CDN Profile does not have the Lock set up. | Locks can help prevent accidental and malicious changes or deletion. Ensure that resource Locks are set for mission-critical Azure resources. | More info |
CDN Profiles (3)
Name | Location | Service type | Pricing tier | Resource group | Provisioning state | Security issues |
---|---|---|---|---|---|---|
test-front-door | Global | Front Door | Standard AzureFrontDoor | resource-group | Succeeded | 1 Low (details) |
test-cdn | Global | CDN | Standard Microsoft | resource-group | Succeeded | 1 Low (details) |
test-prevasio-verizon | Global | CDN | Premium Verizon | resource-group | Succeeded | 1 Low (details) |