AZURE BL 1-4 Storage Accounts data at rest must be encrypted
Created by: ControlMap Support
Modified on: Mon, 19 Jul, 2021 at 4:00 PM
Storage Accounts are encrypted by default with Microsoft-managed keys. This check ensures that the default encryption is not changed or interfered with.
For remediating from the Azure Portal
- Goto Storage Accounts.
- Select the storage account you want to remediate
- Click Encryption.
- Set type to Customer-managed keys.
- Use option Select from the key vault or Enter key URI to set up encryption with your customer key.
- Save the setting before exit
You can read more about data encryption in Azure here.
Did you find it helpful?
Sorry we couldn't be helpful. Help us improve this article with your feedback.