Ensure Azure Cognitive Search disables public network access

Error: Azure Cognitive Search does not disable public network access

Bridgecrew Policy ID: BC_AZR_NETWORKING_41
Checkov Check ID: CKV_AZURE_124
Severity: LOW

Azure Cognitive Search does not disable public network access

Description

It is moreIt is generally a good security practice to ensure that your Azure Cognitive Search instance does not have public network access enabled, as this means that it is only accessible from within your private network. This can help to protect your search instance from unauthorized access, as external parties will not be able to connect to it over the internet. It is especially important to ensure that public network access is disabled if your Azure Cognitive Search instance contains sensitive or confidential data.

Fix - Buildtime

Terraform

  • Resource: azurerm_search_service
  • Argument: public_network_access_enabled
resource "azurerm_search_service" "example" {
              ...
 +            public_network_access_enabled = false
}