![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 0%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAL%3C/text%3E%3C/svg%3E)
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
8,930 questions
Hello @Alexander Lindgren
Linux apps in App Service as a PaaS is developed with security best practices.
https://learn.microsoft.com/en-us/security/benchmark/azure/baselines/app-service-security-baseline?toc=/azure/app-service/toc.json
Linux apps in App Service only supports SSH configuration with root user as it is used by App Service to let you access the SSH session with the container.
SSH access to Linux apps in App Service is secured with the following configuration:
- SSH is available only through the Kudu/SCM Site. The Kudu/SCM site is authenticated with your Azure account.
- Linux apps in App Service run in their own containers. No access to the host operating system is allowed, you do have root access to the container. Likewise, for apps running in Windows containers, you have administrative access to the container but no access to the host operating system.
- SSH configuration with root user doesn't allow external connections to the container.
- App Service uses port 2222 for SSH into the app's container, but that doesn't mean that port 2222 is exposed over the Internet. No matter how to use SSH in the app, all SSH traffic is handled through an endpoint on port 443.
https://stackoverflow.com/questions/69215797/docker-user-as-root-for-azure-app-service
https://learn.microsoft.com/en-us/answers/questions/495140/creating-a-non-root-user-and-web-ssh-cosole-login.html