Vulnerabilities
Misconfiguration
Runtime Security
Compliance
Azure > Resources >

Management Lock Enabled

MEDIUM
Source
CloudSploit
ID
management-lock-enabled
management console

Management Lock Enabled

Ensures that resources tagged as locked are actually locked

Enabling Management Locks ensures that critical resources cannot be inadvertently modified or deleted.

Follow the appropriate remediation steps below to resolve the issue.

  1. Log in to the Microsoft Azure Management Console.

  2. Select the “Search resources, services, and docs” option at the top and search for “Storage accounts”. Step

  3. Select the “Storage account” by clicking on the “Name” link to access the configuration changes. Step

  4. In the left navigation panel, click on the “Locks” under “Settings”.Step

  5. If you do not see any locks enabled then the resource is not protected against advertent deletion by a managament lock.Step

  6. To ensure that management lock is enabled, click the “Add” button at the top and select “Read only” from the dropdown “Lock type” in the “Add” pop up and click “OK”. Step

  7. Ensure all other critical resources have management lock enabled.Step

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use