filmov
tv
Fix / Remediate Security Configuration of Azure Resources with Powerful Azure Modify Policies
Показать описание
Fix / Remediate Security Configuration of Azure Resources with Powerful Azure Modify Policies
Trigger manual policy scan on a subscription:
az policy state trigger-scan
Custom modify policy to fix blob public access:
{
"mode": "All",
"policyRule": {
"if": {
"allOf": [
{
"field": "type",
"equals": "Microsoft.Storage/storageAccounts"
},
{
"field": "Microsoft.Storage/storageAccounts/allowBlobPublicAccess",
"notEquals": false
}
]
},
"then": {
"effect": "[parameters('effect')]",
"details": {
"conflictEffect": "audit",
"roleDefinitionIds": [
"/providers/Microsoft.Authorization/roleDefinitions/17d1049b-9a84-46fb-8f53-869881c3d3ab"
],
"operations": [
{
"operation": "addOrReplace",
"field": "Microsoft.Storage/storageAccounts/allowBlobPublicAccess",
"value": false
}
]
}
}
},
"parameters": {
"effect": {
"type": "String",
"metadata": {
"displayName": "Effect",
"description": "Enable or disable the execution of the policy"
},
"allowedValues": [
"Modify",
"Disabled"
],
"defaultValue": "Modify"
}
}
}
Assign policy and create a remediation task.
Trigger manual policy scan on a subscription:
az policy state trigger-scan
Custom modify policy to fix blob public access:
{
"mode": "All",
"policyRule": {
"if": {
"allOf": [
{
"field": "type",
"equals": "Microsoft.Storage/storageAccounts"
},
{
"field": "Microsoft.Storage/storageAccounts/allowBlobPublicAccess",
"notEquals": false
}
]
},
"then": {
"effect": "[parameters('effect')]",
"details": {
"conflictEffect": "audit",
"roleDefinitionIds": [
"/providers/Microsoft.Authorization/roleDefinitions/17d1049b-9a84-46fb-8f53-869881c3d3ab"
],
"operations": [
{
"operation": "addOrReplace",
"field": "Microsoft.Storage/storageAccounts/allowBlobPublicAccess",
"value": false
}
]
}
}
},
"parameters": {
"effect": {
"type": "String",
"metadata": {
"displayName": "Effect",
"description": "Enable or disable the execution of the policy"
},
"allowedValues": [
"Modify",
"Disabled"
],
"defaultValue": "Modify"
}
}
}
Assign policy and create a remediation task.
0:33:21
Fix / Remediate Security Configuration of Azure Resources with Powerful Azure Modify Policies
0:05:40
Vulnerability discovery and remediation | Microsoft 365 Defender
0:34:35
Security Recommendation and Remediation | Microsoft Defender for Endpoint
0:36:13
Remediate Security Recommendations with Governance | Defender for Cloud in the Field #15
0:40:32
Cloud Security Remediation 101 – Fix the Issues Fast!
0:05:07
Endpoint Security: Setting Hours of Operation on Patch and Remediation Agents
0:03:53
Remediation | Microsoft Defender for Identity
0:01:51
Cloud Configuration Auto-remediation with Aqua CSPM
2:38:09
Introduction to CDM Enabled Threat Hunting (CETH) Using the CDM Agency Dashboard
0:01:55
How can I troubleshoot failed remediation actions in AWS Config?
0:01:01
FIX BlackLotus Secure Boot Vulnerability | Detection and Remediation Scripts | Fixes from Microsoft
0:08:34
REMEDIATE SECURITY ALERTS AUTOMATE RESPONSES USING MICROSOFT DEFENDER FOR CLOUD
0:37:08
How to quickly remediate security vulnerabilities with Arctic Wolf and Automox
0:17:14
AWS Security Hub Automated Response And Remediation Tutorial! Learn Cloud Security Now!
0:05:46
Identify and Remediate Cloud Security Misconfiguration with Skyhigh CSPM
0:09:02
Find, prioritize, and remediate most exposed vulnerabilities
0:09:24
Network Security Tools to stop hackers
0:05:46
HDI Group: Automated Security and Compliance Issue Remediation Using Cloud Native Services
0:05:13
HBO Max: Automating Remediation of AWS Resource Misconfigurations
0:25:18
Microsoft Defender for EndPoint Tech Overview!
0:03:09
GitHub Integration 1.5 - Remediate
0:17:14
Remediation Plans
0:05:27
How to Fix Windows Defender Remediation Incomplete
0:18:08
Audit and remediate security issues in Jamf Connect | JNUC 2020
Комментарии