Microsoft Web
Best practices and references below are based on published guidance from the cloud service provider and may reference native capabilities the cloud service provider offers. If you are not using the native security capabilities, the same security requirement can be met using other security capabilities your organization utilizes
Design Guidance:
Target Worker Count | |
Sku-Capacity |
Vpn Package Uri |
Network Access Control List | |
Network Access Control List-Action | |
Network Access Control List-Description | |
Network Access Control List-Order | |
Network Access Control List-Remote Subnet |
Start Address | |
End Address |
Vnet Name | |
Vnet Resource Group Name | |
Vnet Subnet Name | |
Virtual Network | |
Virtual Network-Id | |
Virtual Network-Subnet |
Internal Load Balancing Mode |
Load Balancing |
Kind |
Kind |
Kind |
Kind |
User Whitelisted Ip Ranges |
Ip Security Restrictions | |
Ip Security Restrictions-Ip Address | |
Ip Security Restrictions-Subnet Mask | |
Ip Security Restrictions-Vnet Subnet Resource Id | |
Ip Security Restrictions-Action | |
Ip Security Restrictions-Priority | |
Ip Security Restrictions-Name | |
Ip Security Restrictions-Description | |
Scm Ip Security Restrictions | |
Scm Ip Security Restrictions-Ip Address | |
Scm Ip Security Restrictions-Subnet Mask | |
Scm Ip Security Restrictions-Vnet Subnet Resource Id | |
Scm Ip Security Restrictions-Action | |
Scm Ip Security Restrictions-Priority | |
Scm Ip Security Restrictions-Name | |
Scm Ip Security Restrictions-Description |
Design Guidance:
Host Name SSL States | |
Host Name SSL States-Name | |
Host Name SSL States-SSL State | |
Host Name SSL States-Virtual Ip | |
Host Name SSL States-Host Type | |
HTTPS Only | |
Site Config-Min TLS Version | |
Site Config-Ftps State |
Ftps State | |
Min TLS Version |
SSL State |
Client Affinity Enabled |
Design Guidance:
Client Cert Mode | |
Client Cert Enabled |
Design Guidance:
Site Config-Remote Debugging Enabled |
Site Config-Cors | |
Cors-Allowed Origins | |
Cors-Support Credentials |
Cors | |
Cors-Allowed Origins | |
Cors-Support Credentials |
Net Framework Version | |
Php Version | |
Python Version | |
Node Version | |
Power Shell Version | |
Linux Fx Version | |
Windows Fx Version | |
Java Version | |
Java Container | |
Java Container Version |
Design Guidance:
HTTP Logging Enabled | |
Logs Directory Size Limit |
Design Guidance:
Ip Security Restrictions-Headers | |
Scm Ip Security Restrictions-Headers |
Thumbprint |
Last modified 1yr ago