Aqua CSPM

Detect Insecure Custom Origin

Quick Info

Plugin TitleDetect Insecure Custom Origin
CloudAZURE
CategoryCDN
DescriptionEnsure that HTTPS is enabled when creating a new CDN endpoint with a Custom Origin.
More InfoDetects if HTTPS is disabled for CDN endpoint of custom origins.
AZURE Linkhttps://docs.microsoft.com/en-us/azure/cdn/cdn-create-endpoint-how-to
Recommended Action1. Navigate to CDN profiles. 2. Select a profile. 3. Select an endpoint. 4. Select Settings > Origin. 5. Turn off HTTP and make sure HTTPS is turned on.

Detailed Remediation Steps