App Service Environment is not zone redundant
Description
This policy is designed to verify if the App Service Environment is zone redundant. Zone redundancy refers to the distribution of resources across different geographical zones to ensure business continuity and disaster recovery. A lack of zone redundancy could lead to service disruptions if the zone hosting the App Service Environment faces any unexpected issues such as outages or natural disasters. Therefore, it's crucial to establish zone redundancy to prevent service availability issues and potential data loss.
Code Example
hcl
resource "azurerm_app_service_environment_v3" "example" {
name = "example-ase"
// ...
zone_redundant = true
}Remediation
Terraform
- Resource: azurerm_app_service_environment_v3
- Arguments: zone_redundant
To fix this issue, you need to enable zone redundancy for the App Service Environment by setting the `zone_redundant` attribute to `true`.
Rule Details
| Field | Value |
|---|---|
| ID | IAC-0738 |
| Severity | MEDIUM |
| IaC Type | Terraform |
| Frameworks | Terraform, TerraformPlan |
| Checkov ID | CKV_AZURE_231 |