azureeif

package

v0.0.0-...-71e82b1 Latest Latest Go to latest Published: Apr 26, 2021 License: Apache-2.0 Imports: 13 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/citihub/probr-pack-storage

Links

Open Source Insights

README ¶

Encryption in Flight Probe Notes

This directory contains the feature file and code realted to the probing of encryption in flight controls

Mandatory Azure Configuration Variables

AZURE_SUBSCRIPTION_ID - the user supplied azure subscription id
AZURE_TENANT_ID - the user supplied azure tenant id
AZURE_CLIENT_ID - the user supplied azure client id (will n ormally be a service principal application id)
AZURE_CLIENT_SECRET - the secret required for client authentication
AZURE_RESOURCE_GROUP - the user supplied resource group for Probr purposes and must exist in the specified subscription
AZURE_RESOURCE_LOCATION - the azure geo location where test storage account resources may be created

Azure Policy prerequiste

A policy which denies the creation of storage accounts with non-secure http access enabled, must be assigned to the user's azure subscription or azure management group. The applicable built-in azure policy is: Secure transfer to storage accounts should be enabled The assignment must set the 'Effect' parameter value to 'Deny', in order to prevent creation of storage accounts with the EnableHTTPSTrafficOnly option not set to true. Note that the default value is 'Audit', which will not prevent non-compliant account creation.