Skip to main content

Remediation

From Azure Portal

Go to Storage Accounts.
For each storage account, under Settings, click Configuration.
Set Allow Blob Anonymous Access to Disabled.
Click Save.

From Powershell

For every storage account in scope, run the following:

$storageAccount = Get-AzStorageAccount -ResourceGroupName "<yourResourceGroup>" -Name "<yourStorageAccountName>" $storageAccount.AllowBlobPublicAccess = $false Set-AzStorageAccount -InputObject $storageAccount

From Azure Portal
From Powershell