Search…
⌃K
Links

Microsoft HealthcareApis

Best practices and references below are based on published guidance from the cloud service provider and may reference native capabilities the cloud service provider offers. If you are not using the native security capabilities, the same security requirement can be met using other security capabilities your organization utilizes

Identification and Authentication

Microsoft.HealthcareApis/services

Identity-Type
Terraform
Authentication Configuration-Authority
Terraform

Asset Inventory

Design Guidance:

Microsoft.HealthcareApis/services

Name
Terraform
Export Configuration-Storage Account Name
Terraform
Tags
Terraform

Identity Lifecycle Management

Design Guidance:

Microsoft.HealthcareApis/services

Access Policies-Object Id
Terraform

CORS Headers

Design Guidance:

Microsoft.HealthcareApis/services

Cors Configuration-Allow Credentials
Terraform
Cors Configuration-Headers
Terraform
Cors Configuration-Origins
Terraform
Cors Configuration-Max Age
Terraform

Secure Response Headers

Microsoft.HealthcareApis/services

Cors Configuration-Methods
Terraform

Protect Cryptographic Keys

Design Guidance:

Microsoft.HealthcareApis/services

Cosmos Db Configuration-Key Vault Key Uri
Terraform

Design for High Availability

Design Guidance:

Microsoft.HealthcareApis/services

Cosmos Db Configuration-Offer Throughput
Terraform