| ๐ผ 3.1 Ensure that 'Secure transfer required' is set to 'Enabled' - Level 1 (Automated) | | 1 | 1 | |
| ๐ผ 3.2 Ensure That Storage Account Access Keys are Periodically Regenerated - Level 1 (Manual _ Not supported due to a bug in Azure API) | | | | |
| ๐ผ 3.3 Ensure Storage Logging is Enabled for Queue Service for 'Read', 'Write', and 'Delete' requests - Level 2 (Automated) | | 1 | 1 | |
| ๐ผ 3.4 Ensure that Shared Access Signature Tokens Expire Within an Hour - Level 1 (Manual _ Not supported, no API/CLI available by Azure) | | | | |
| ๐ผ 3.5 Ensure that 'Public access level' is set to Private for blob containers - Level 1 (Automated) | | | | |
| ๐ผ 3.6 Ensure Default Network Access Rule for Storage Accounts is Set to Deny - Level 2 (Automated) | | | | |
| ๐ผ 3.7 Ensure 'Trusted Microsoft Services' are Enabled for Storage Account Access - Level 2 (Automated) | | 1 | 1 | |
| ๐ผ 3.8 Ensure Soft Delete is Enabled for Azure Storage - Level 1 (Automated) | | 1 | 1 | |
| ๐ผ 3.9 Ensure Storage for Critical Data are Encrypted with Customer Managed Keys - Level 2 (Manual) | | 1 | 1 | |
| ๐ผ 3.10 Ensure Storage logging is Enabled for Blob Service for 'Read', 'Write', and 'Delete' requests - Level 2 (Automated) | | 1 | 1 | |
| ๐ผ 3.11 Ensure Storage Logging is Enabled for Table Service for 'Read', 'Write', and 'Delete' Requests - Level 2 (Automated) | | | | |
| ๐ผ 3.12 Ensure the "Minimum TLS version" is set to "Version 1.2" - Level 1 (Automated) | | 1 | 1 | |