Forum Discussion

nabi04's avatar
nabi04
Brass Contributor
Jan 06, 2021
Solved

Disable FTP in Azure Policy

Hello all, is there an equivalent azure policy that disables the FTP of my applications in my subscription? If none, how can I disable the FTP of the applications under my subscription?
azure policy
FTP
  • ibnmbodji's avatar
    ibnmbodji
    Jan 06, 2021

    nabi04 

     

    You're welcome it's mentionned on the definition FTPs (s=secure) . If FTPs is enabled FTP will be disabled . 

    Below the details : 

    Name
    FTPS should be required in your Web App
    Description
    Enable FTPS enforcement for enhanced security
    Available Effects
    AuditIfNotExists, Disabled
    Category
    App Service
     
    Json definition :  
    {
      "properties": {
        "displayName": "FTPS should be required in your Web App",
        "policyType": "BuiltIn",
        "mode": "Indexed",
        "description": "Enable FTPS enforcement for enhanced security",
        "metadata": {
          "version": "2.0.0",
          "category": "App Service"
        },
        "parameters": {
          "effect": {
            "type": "String",
            "metadata": {
              "displayName": "Effect",
              "description": "Enable or disable the execution of the policy"
            },
            "allowedValues": [
              "AuditIfNotExists",
              "Disabled"
            ],
            "defaultValue": "AuditIfNotExists"
          }
        },
        "policyRule": {
          "if": {
            "allOf": [
              {
                "field": "type",
                "equals": "Microsoft.Web/sites"
              },
              {
                "field": "kind",
                "like": "app*"
              }
            ]
          },
          "then": {
     
    By the way if you want to disable both  you cannot do that through policy but it's documented 
    To disable both FTP and FTPS entirely, select Disabled. When finished, click Save
    Deploy content using FTP/S - Azure App Service | Microsoft Docs
     
     
     
     
     
     
     
nabi04's avatar
nabi04
Brass Contributor
Jan 06, 2021

ibnmbodji thank you, but aren't those policies is to enable FTP? I need the policy that disables the FTP state.

ibnmbodji's avatar
ibnmbodji
Iron Contributor
Jan 06, 2021

nabi04 

 

You're welcome it's mentionned on the definition FTPs (s=secure) . If FTPs is enabled FTP will be disabled . 

Below the details : 

Name
FTPS should be required in your Web App
Description
Enable FTPS enforcement for enhanced security
Available Effects
AuditIfNotExists, Disabled
Category
App Service
 
Json definition :  
{
  "properties": {
    "displayName": "FTPS should be required in your Web App",
    "policyType": "BuiltIn",
    "mode": "Indexed",
    "description": "Enable FTPS enforcement for enhanced security",
    "metadata": {
      "version": "2.0.0",
      "category": "App Service"
    },
    "parameters": {
      "effect": {
        "type": "String",
        "metadata": {
          "displayName": "Effect",
          "description": "Enable or disable the execution of the policy"
        },
        "allowedValues": [
          "AuditIfNotExists",
          "Disabled"
        ],
        "defaultValue": "AuditIfNotExists"
      }
    },
    "policyRule": {
      "if": {
        "allOf": [
          {
            "field": "type",
            "equals": "Microsoft.Web/sites"
          },
          {
            "field": "kind",
            "like": "app*"
          }
        ]
      },
      "then": {
 
By the way if you want to disable both  you cannot do that through policy but it's documented 
To disable both FTP and FTPS entirely, select Disabled. When finished, click Save
Deploy content using FTP/S - Azure App Service | Microsoft Docs
 
 
 
 
 
 
 
  • nabi04's avatar
    nabi04
    Brass Contributor
    Jan 06, 2021

    ibnmbodji Okay great, that helps a lot. Thank you!

    • ibnmbodji's avatar
      ibnmbodji
      Iron Contributor
      Jan 06, 2021

      nabi04 

       

      Youre welcome , glad that can help. 

      Thank you.

Resources