Cosmos DB accounts do not have restricted access

Description

Cosmos DB is a globally distributed database service that provides multiple ways to secure and protect your data, such as network isolation, virtual networks, Azure Private Link, and Azure AD authentication. By restricting access to your Cosmos DB account, you can control who can access your database and what actions they can perform on it. By ensuring that your Cosmos DB accounts have restricted access, you can help to improve the security of your database and protect it from unauthorized access or attacks. This can help to ensure that your database is secure and available for your users.

Code Example

resource "azurerm_cosmosdb_account" "db" {
              ...
 +            public_network_access_enabled = false
              ...
            }

Remediation

Terraform

Resource: azurerm_cosmosdb_account
Arguments: public_network_access_enabled

Rule Details

Field	Value
ID	IAC-0606
Severity	LOW
IaC Type	arm
Frameworks	Terraform,
Checkov ID	CKV_AZURE_99

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Cosmos DB accounts do not have restricted access

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Cosmos DB accounts do not have restricted access ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Cosmos DB accounts do not have restricted access

Description

Code Example

Remediation

Rule Details

References