Azure MySQL Server SSL-Only Disabled

Network misconfigurations

Azure MySQL Server SSL-Only Disabled

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

Azure CIS
Brazilian General Data Protection (LGPD)
CCPA
coppa
CPRA
Data Security Posture Management (DSPM) Best Practices
hdh
ISO/IEC 27001
Microsoft Cloud Security Benchmark
Mitre ATT&CK
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
PDPA

Description

Azure Database for PostgreSQL allows by default to prefer connections using TLS (previously known as SSL). enforcing TLS connections helps protect against 'man-in-the-middle' attacks by encrypting the data stream. The server {AzureMySqlDbServer} was found configured without SSL enforce enabled when accessed.

Recommended Mitigation

For each database, under connection security, set 'Enforce SSL Connection' to ENABLED. see further reference at <a href="https://docs.microsoft.com/en-us/azure/mysql/concepts-ssl-connection-security" target="_blank" rel="noopener noreferrer">https://docs.microsoft.com/en-us/azure/mysql/concepts-ssl-connection-security</a>

Azure MySQL Server SSL-Only Disabled

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS