Azure Front Door and CDN Profiles

Overview
Critical
0
High
0
Medium
2
Low
5
Informational
0
Security issues (7)
Severity Non-Compliance Region Resource Issue Remediation Read more Action
Medium PCI DSS 4.2 HIPAA (Encryption) global test-prevasio-verizon-endpoint CDN Profile endpoint allows insecure HTTP origin. To fulfill HIPAA and PCI DSS requirements on strong cryptographic and security protocols for transmitting user data, enable HTTPS and disable HTTP for each custom origin endpoint for each CDN Profile. More info
Low CIS 5.3 PCI DSS 10.2 HIPAA (Audit) global test-prevasio-verizon-endpoint CDN Profile endpoint has no diagnostic settings. To export basic usage metrics from your CDN endpoint to different sources, ensure that diagnostic logging is enabled for each CDN endpoint for each CDN Profile. More info
Medium PCI DSS 4.2 HIPAA (Encryption) global test-cdn-endpoint-prevasio CDN Profile endpoint allows insecure HTTP origin. To fulfill HIPAA and PCI DSS requirements on strong cryptographic and security protocols for transmitting user data, enable HTTPS and disable HTTP for each custom origin endpoint for each CDN Profile. More info
Low CIS 5.3 PCI DSS 10.2 HIPAA (Audit) global test-cdn-endpoint-prevasio CDN Profile endpoint has no diagnostic settings. To export basic usage metrics from your CDN endpoint to different sources, ensure that diagnostic logging is enabled for each CDN endpoint for each CDN Profile. More info
Low CIS 10.1 global test-front-door CDN Profile does not have the Lock set up. Locks can help prevent accidental and malicious changes or deletion. Ensure that resource Locks are set for mission-critical Azure resources. More info
Low CIS 10.1 global test-cdn CDN Profile does not have the Lock set up. Locks can help prevent accidental and malicious changes or deletion. Ensure that resource Locks are set for mission-critical Azure resources. More info
Low CIS 10.1 global test-prevasio-verizon CDN Profile does not have the Lock set up. Locks can help prevent accidental and malicious changes or deletion. Ensure that resource Locks are set for mission-critical Azure resources. More info
CDN Profiles (3)
Name Location Service type Pricing tier Resource group Provisioning state Security issues
test-front-doorGlobalFront DoorStandard AzureFrontDoorresource-group Succeeded 1 Low (details)
test-cdnGlobalCDNStandard Microsoftresource-group Succeeded 1 Low (details)
test-prevasio-verizonGlobalCDNPremium Verizonresource-group Succeeded 1 Low (details)
CDN endpoints (2)
Hostname Location Status Protocol Security issues
test-prevasio-verizon-endpoint.azureedge.netGlobal RunningHTTP, HTTPS 1 Medium + 1 other (details)
test-cdn-endpoint-prevasio.azureedge.netGlobal RunningHTTP, HTTPS 1 Medium + 1 other (details)