Data protection

Azure Service Fabric cluster ‘ClusterProtectionLevel’ parameter value, should be set to ‘EncryptAndSign’

Platform(s)
Compliance Frameworks

Description

It was detected that 'ClusterProtectionLevel' security parameter is not configured/configured with value other than recommended. Service Fabric provides three levels of protection (None, Sign and EncryptAndSign) for node-to-node communication using a primary cluster certificate. Set the protection level to ensure that all node-to-node messages are encrypted and digitally signed. For more information, please follow: https://learn.microsoft.com/en-us/azure/service-fabric/service-fabric-cluster-security#node-to-node-security.

  • Recommended Mitigation

    Set the parameter's vaule to be 'EncryptAndSign'.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.