Stack Overflow
Stack Overflow

Questions tagged [azure-security]

Use this tag for Azure Security questions

216 questions
2
votes
1 answer

What are the key differences between service trust portal and compliance manager

Both have Privacy, compliance and security menus on their site and redirect to compliance offerings. So how do we differentiate for what purpose do we you one of each or both is the question. My team is working on documentation for pricing and…
Aditya
  • 67
  • 1
  • 12
2
votes
2 answers

How to List Azure Network Security Group from all Subscription using powershell

I am trying to create an PowerShell script to list Azure Network Security Groups and it's rule from all subscription and export it to CSV. Below is my code which list all the NSG Rule…
vishalsingh1347
  • 37
  • 1
  • 8
2
votes
1 answer

Azure access same VNet from two different subscriptions

we have two subscriptions, A and B. A has a VPN and VNet to talk to on-premises resources, how could we access that VNet from subscription B? We would like to set it up on an app service so we can also talk to on-prem. thanks!
Alex
  • 2,247
  • 1
  • 27
  • 37
2
votes
1 answer

Microsoft Graph Security API - Issue with https://graph.microsoft.com/beta/security/tiIndicators

I am trying to use Microsoft graph API threat Indicators API based on Azure sentinel recommended way of integrating threat intelligence sources for IOC ingestion to Sentinel Instance. I perform the following steps in linux curl to test the…
Deep
  • 35
  • 1
  • 3
  • 8
2
votes
1 answer

Deactivate azure security policy for a specific resource

How can I deactivate an azure security policy for a specific resource? Policy shall be still applied to other resource in resource group / subscription.
user7539828
  • 43
  • 3
2
votes
1 answer

Azure DevOps: Group Rules

Organizational Settings -> Users -> Group Rules -> (Add a Group Rule) Where does the list of "Azure DevOps Groups" populate from and is there a way to add additional groups to the list?
Doug
  • 6,446
  • 9
  • 74
  • 107
2
votes
1 answer

How to allow users over VPN to access Azure Web App

We have an Azure Web App and Azure VPN, we've locked down the web app so it's accessible internally only by granting/restricting access via IP addresses (via Access Restrictions page). However users over our VPN are not able to access the web app -…
Greg
  • 3,861
  • 3
  • 23
  • 58
2
votes
2 answers

Azure AD: How to make tokens have the "hasgroups" claim?

Our application allows assigning permission to groups, which means for every user, we have to reliably determine group membership. The user presents a token regularly obtained with ADAL (some use .NET, others use NodeJS, others use CLI). Some users…
fernacolo
  • 7,012
  • 5
  • 40
  • 61
2
votes
1 answer

RBAC access to Azure Storage - preview roles not acting as expected

I'm trying to give our operations team read-only access to a storage account containing log files. I'd like to be able to give them the right to enumerate containers and read blobs. Ideally that would be the extent of their access. There are a…
Josh
  • 4,009
  • 2
  • 31
  • 46
2
votes
1 answer

How can i secure an Azure Website/Function from the WWW?

We have a API-based microservice system, where a public API gateway (.NET Nancy API running on Azure Website) calls into microserviced API's (various technologies) to return data. Currently, the microserviced API's are either Azure WebSites, or…
RPM1984
  • 72,246
  • 58
  • 225
  • 350
2
votes
1 answer

Restricting access to Azure SQL from Azure VM

Since Azure SQL have only DNS address and no IP , we can not enforce ACL's/NSG's on our Azure app VM as it needs to communicate with our Azure SQL.. ACL's/NSG's only have IP ranges restriction..no DNS restrictions.. So , potentially, a hacker who…
yaniv inbar
  • 21
  • 1
2
votes
2 answers

Viewing Azure Webjob appsettings in locked down production environment

We are using Azure webjobs for various tasks. Dev, Test, Demo and Prod are each on separate Azure subscriptions. We have a Config Management team that controls/locks down access to everything but Dev. They do not want developers being able to view…
Dan Csharpster
  • 2,662
  • 1
  • 26
  • 50
2
votes
0 answers

Azure Network Security Groups not showing in Portal

I am getting a bit frustrated with the Azure "Preview" Portal. I have just created a new NSG with the PowerShell: # Create a new NSG New-AzureNetworkSecurityGroup -Location "West Europe" -Name "NAME" But it is not showing in the Portal: But is…
opHASnoNAME
  • 20,224
  • 26
  • 98
  • 143
1
vote
1 answer

New-DlpComplianceRule: parameter 'AdvancedRule'. Cannot convert value to type System.String

I am trying to follow MS article, https://learn.microsoft.com/en-us/powershell/module/exchange/new-dlpcompliancerule?view=exchange-ps Example 3 $data = Get-Content -Path "C:\Data\Sensitive Type.txt" -ReadCount 0 New-DLPComplianceRule -Name "Contoso…
Y.T
  • 23
  • 4
1
vote
0 answers

Device recognition blocking single sign on using saml

I have app that supports SAML sign on, it works with every other client with all IDP's including azure. But recently we were integrating with client azure portal that has some sort of Device recognition enabled. SO when we try to login using mobile…
Tauseef Rehan
  • 37
  • 5
1 2
3
14 15