πΌ 9.1 Ensure 'HTTPS Only' is set to 'On' (Automated)
- Contextual name: πΌ 9.1 Ensure 'HTTPS Only' is set to 'On' (Automated)
- ID:
/frameworks/cis-azure-v3.0.0/09/01
- Located in: πΌ 9 AppService
Descriptionβ
Azure App Service allows apps to run under both HTTP and HTTPS by default. Apps can be accessed by anyone using non-secure HTTP links by default. Non-secure HTTP requests can be restricted and all HTTP requests redirected to the secure HTTPS port. It is recommended to enforce HTTPS-only traffic.
Similarβ
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (1)β