Network misconfigurations

Azure Key vault without firewall rules settings

Platform(s)
Compliance Frameworks

Description

It was detected that {AzureKeyVault} is not configured with firewall rules settings. You can restrict access to the Key Vault by configuring specific IP ranges. For more info, see https://learn.microsoft.com/en-us/azure/key-vault/general/network-security#firewall-settings.
  • Recommended Mitigation

    It is recommended to configure the key vault firewall so that the key vault is not accessible by default to any public IPs.