Ensure MariaDB servers have public network access enabled set to False

Error: MariaDB servers do not have public network access enabled set to False

Bridgecrew Policy ID: BC_AZR_PUBLIC_1
Checkov Check ID: CKV_AZURE_48
Severity: HIGH

MariaDB servers do not have public network access enabled set to False

Description

It is generally a good security practice to ensure that your MariaDB servers do not have public network access enabled, as this means that they are only accessible from within your private network. This can help to protect your database servers from unauthorized access, as external parties will not be able to connect to them over the internet. It is especially important to ensure that public network access is disabled if your MariaDB servers contain sensitive or confidential data.

Fix - Buildtime

Terraform

  • Resources: azurerm_mariadb_server
  • Argument: public_network_access_enabled is set to False.
resource "azurerm_mariadb_server" "example" {
   ...
+  public_network_access_enabled = false

}