CRITICAL
Source
Trivy
ID
AVD-AZU-0035

Data Factory should have public access disabled, the default is enabled.

Data Factory has public access set to true by default.

Disabling public network access is applicable only to the self-hosted integration runtime, not to Azure Integration Runtime and SQL Server Integration Services (SSIS) Integration Runtime.

Impact

Data factory is publicly accessible

Follow the appropriate remediation steps below to resolve the issue.

Set public access to disabled for Data Factory

1
2
3
4
5
6
7
 resource "azurerm_data_factory" "good_example" {
   name                = "example"
   location            = azurerm_resource_group.example.location
   resource_group_name = azurerm_resource_group.example.name
   public_network_enabled = false
 }