Best practices

Soft delete is disabled for blobs or containers in azure storage account

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Soft delete status for blobs/containers is disabled for : {AzureStorageAccount}. Data that is erroneously modified or deleted by an application or other storage account user will cause data loss or unavailability. It is recommended that both Azure Containers with attached Blob Storage and standalone containers with Blob Storage be made recoverable by enabling the soft delete configuration. This is to save and recover data when blobs or blob snapshots are deleted.
  • Recommended Mitigation

    For each storage account, under Data Protection settings, check the 'Enable soft delete for blobs' and 'Enable soft delete for containers' checkboxes