Stack Overflow
Stack Overflow

Questions tagged [azure-security]

Use this tag for Azure Security questions

159 questions
2
votes
1 answer

Deactivate azure security policy for a specific resource

How can I deactivate an azure security policy for a specific resource? Policy shall be still applied to other resource in resource group / subscription.
user7539828
  • 43
  • 3
2
votes
1 answer

Azure DevOps: Group Rules

Organizational Settings -> Users -> Group Rules -> (Add a Group Rule) Where does the list of "Azure DevOps Groups" populate from and is there a way to add additional groups to the list?
Doug
  • 5,243
  • 7
  • 54
  • 89
2
votes
2 answers

Azure AD: How to make tokens have the "hasgroups" claim?

Our application allows assigning permission to groups, which means for every user, we have to reliably determine group membership. The user presents a token regularly obtained with ADAL (some use .NET, others use NodeJS, others use CLI). Some users…
fernacolo
  • 5,982
  • 4
  • 35
  • 57
2
votes
1 answer

RBAC access to Azure Storage - preview roles not acting as expected

I'm trying to give our operations team read-only access to a storage account containing log files. I'd like to be able to give them the right to enumerate containers and read blobs. Ideally that would be the extent of their access. There are a…
Josh
  • 3,035
  • 2
  • 23
  • 40
2
votes
1 answer

Restricting access to Azure SQL from Azure VM

Since Azure SQL have only DNS address and no IP , we can not enforce ACL's/NSG's on our Azure app VM as it needs to communicate with our Azure SQL.. ACL's/NSG's only have IP ranges restriction..no DNS restrictions.. So , potentially, a hacker who…
yaniv inbar
  • 21
  • 1
2
votes
2 answers

Viewing Azure Webjob appsettings in locked down production environment

We are using Azure webjobs for various tasks. Dev, Test, Demo and Prod are each on separate Azure subscriptions. We have a Config Management team that controls/locks down access to everything but Dev. They do not want developers being able to view…
Dan Csharpster
  • 2,042
  • 1
  • 18
  • 41
2
votes
0 answers

Azure Network Security Groups not showing in Portal

I am getting a bit frustrated with the Azure "Preview" Portal. I have just created a new NSG with the PowerShell: # Create a new NSG New-AzureNetworkSecurityGroup -Location "West Europe" -Name "NAME" But it is not showing in the Portal: But is…
opHASnoNAME
  • 18,735
  • 24
  • 93
  • 138
1
vote
1 answer

User delegation key vs account key - security?

In Microsoft's documentation for user delegation key, it says: A SAS token for access to a container, directory, or blob may be secured by using either Azure AD credentials or an account key. A SAS secured with Azure AD credentials is called a user…
Ziggy000
  • 95
  • 5
1
vote
1 answer

How to use managed identity to access key vault on different subscription of same tenant?

Have my Azure VM scale set on subscription1 of tenantA & assigned user managed identity which also belongs to subscription1 of tenantA. Now I have keyvault on subscription2 of tenantA(same tenant). The keyvault hold secrets which the apps on Azure…
Zackie Khan
  • 37
  • 4
1
vote
1 answer

Azure Cloud no matches for kind "SecretProviderClass" in version "secrets-store.csi.k8s.io/v1alpha1"

I am working in azure cloud and wanted to add a simple ServiceProviderClass using the doc from Azure Azure / secrets-store-csi-driver-provider-azure replacing the secret, keyvaultName and tenantId apiVersion:…
Sylhare
  • 3,058
  • 4
  • 36
  • 51
1
vote
1 answer

What is the name of the firewall rule created by 'Allow Azure services and resources to access this server'

I have 'Allow Azure services and resources to access this server' set to ON for my hosted Azure database server. Every night at 11:00pm we run a script to remove all firewall rules which were put in place by developers who access the database during…
Yossi Geretz
  • 553
  • 1
  • 4
  • 15
1
vote
1 answer

Authorization Token for Azure Security Center to dismiss the alerts

I am trying to dismiss the alerts using API. I am following this link Alert Update . Now I am able to dismiss the alert using this link successfully but I have tried using PostMan and I failed, After looking into the documentation I got to know that…
Anmol Kumar
  • 25
  • 5
1
vote
1 answer

Microsoft Azure DDoS protection alert not recevied

I have implemented Azure DDos with standard(paid) and also setup alert. But I get 45,000 attack on my server and did not received any alert related to it. Can anyone tell where I have done any mistake or left configuration related to DDos. Let me…
Ritesh Jhaggar
  • 63
  • 6
1
vote
1 answer

Azure access same VNet from two different subscriptions

we have two subscriptions, A and B. A has a VPN and VNet to talk to on-premises resources, how could we access that VNet from subscription B? We would like to set it up on an app service so we can also talk to on-prem. thanks!
Alex
  • 1,946
  • 1
  • 23
  • 32
1
vote
1 answer

Azure Event Hub log sorting streaming using query

How to process Azure Log events from Event hub and filter based on criteria. We are trying to filter specific critical or security related Diagnostic and Activity logs before feeding into our Onprem SIEM solution. Can someone please guide me how to…
Anil Kash
  • 11
  • 1
1
2
3
10 11