![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 19%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF%3C/text%3E%3C/svg%3E)
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
8,933 questions
To apply the security baseline for your Azure App Service, you can follow these steps for the specific sections you mentioned:
AM-2: Use automated asset discovery:
- Ensure you have Azure Policy enabled to automatically discover and monitor your assets. You can use Azure Resource Graph to query and explore your resources.
DP-6: Use a secure key management process:
- Integrate Azure Key Vault with your App Service to manage your keys, secrets, and certificates securely. This integration ensures that your sensitive data is protected and managed according to best practices.
PA-7: Use privileged access workstations:
- Implement Privileged Access Workstations (PAWs) for administrative tasks. This involves setting up dedicated, hardened workstations that are used exclusively for sensitive tasks to reduce the risk of credential theft and other security breaches.
After setting up these configurations, you can verify the setup by:
- Using Azure Policy to audit and enforce compliance with the security baseline.
- Monitoring your resources with Microsoft Defender for Cloud to ensure they adhere to the security recommendations.
- Review the Regulatory Compliance dashboard in Microsoft Defender for Cloud regularly to identify non-compliant resources and take corrective actions.
If this answers your question, please click Accept Answer and Yes if this answer was helpful. Doing so would help other community members with similar issues identify the solution. I highly appreciate your contribution to the community.