Network misconfigurations

Azure MySQL Server should use private endpoints

Platform(s)
Compliance Frameworks

Description

It was detected that {AzureMySqlDbServer} has no approved Private endpoint connections. Private Link allows you to connect to various PaaS services in Azure via a private endpoint. Azure Private Link essentially brings Azure services inside your private Virtual Network (VNet). The PaaS resources can be accessed using the private IP address just like any other resource in the VNet. Please note that The private link feature is only available for Azure Database for MySQL servers in the General Purpose or Memory Optimized pricing tiers. For more info, see https://learn.microsoft.com/en-us/azure/mysql/single-server/concepts-data-access-security-private-link.

  • Recommended Mitigation

    It is recommended to configure private endpoint for {AzureMySqlDbServer} Azure MySQL Server, to protect the data from easy interception and reading.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.