modules/Azure/Checks/Test-StorageDefaultNetworkAccessRuleIsDenied.ps1
|
function Test-StorageDefaultNetworkAccessRuleIsDenied { <# .SYNOPSIS Storage account default network access rule is set to Deny .DESCRIPTION **Azure Storage accounts** configure the **default network access rule** to `Deny`, so the **public endpoint** only accepts traffic from explicitly allowed virtual networks, IP ranges, or private endpoints .PARAMETER Check CIEMCheck object containing check metadata. #> [CmdletBinding()] [OutputType([PSCustomObject[]])] param( [Parameter(Mandatory)] $Check ) $ErrorActionPreference = 'Stop' # TODO: Implement check logic based on Prowler check: storage_default_network_access_rule_is_denied [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check storage_default_network_access_rule_is_denied for reference.', 'N/A', 'storage Resources') } |