Jan 05 2021 06:48 PM - edited Jan 05 2021 06:55 PM
Hello all, is there an equivalent azure policy that disables the FTP of my applications in my subscription? If none, how can I disable the FTP of the applications under my subscription?
Jan 06 2021 01:06 AM
Hi there is builtin policy to do that
Go to policy definitions blade :
Search for ftp and you will see 3 policies :
Take the policy for the web app and assign it to your subscription or resource groups
Enforce the policy and add a remediation step with a managed identity (Deploy if not exists)
You can also manually enforce FTPs
The link below show how use FTP over TLS/SSL only (See Enforce FTPs section )
Deploy content using FTP/S - Azure App Service | Microsoft Docs
Jan 06 2021 01:42 AM
@ibnmbodji thank you, but aren't those policies is to enable FTP? I need the policy that disables the FTP state.
Jan 06 2021 02:04 AM
Solution
You're welcome it's mentionned on the definition FTPs (s=secure) . If FTPs is enabled FTP will be disabled .
Below the details :
Jan 06 2021 02:17 AM
@ibnmbodji Okay great, that helps a lot. Thank you!
Jan 06 2021 02:29 AM
Jan 26 2021 05:34 AM
If it can help, please find here JamesDLD/azure-policies a custom policy that disables FTP on Web App using an ARM Template deployment script for the remediation.
In the same repo I have published the ones for API and Function App, always using the
Regards,
Jamesdld
Jan 06 2021 02:04 AM
Solution
You're welcome it's mentionned on the definition FTPs (s=secure) . If FTPs is enabled FTP will be disabled .
Below the details :