Open AlexanderSehr opened 3 months ago
[!IMPORTANT] The "Needs: Triage :mag:" label must be removed once the triage process is complete!
[!TIP] For additional guidance on how to triage this issue/PR, see the BRM Issue Triage documentation.
Hey @tony-box , I just migrated this issue over from CARML. Please take a look and triage if still relevant :)
Will take a look. Thanks!
Description
All default values should comply with a security baseline, e.g. NIST 800
The build-in policies of Azure can be used as a reference.
The task would be to scan over each of the following policies and make sure, that the module is per default complying to them.
The following policies are the NIST 800 ones:
\built-in-policies\policyDefinitions\API Management\ApiManagement_VNETEnabled_Audit.json