Ensure remote debugging is turned off for Azure App Service

HIGH

Description

Enabled remote debugging may lead to unauthorized access in Azure App Service. Remote debugging must be disabled.

Remediation

In Azure Console -

Open the Azure Portal and go to App Services.
Select the App service you wish to edit.
Select Configuration under Settings, then the General settings tab.
Under Debugging, set Remote debugging to off.
Save.

In Terraform -

In the azurerm_app_service resource, set remote_debugging_enabled to false.

References:
https://learn.microsoft.com/en-us/azure/app-service/
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/app_service#remote_debugging_enabled

Policy Details

Rule Reference ID: AC_AZURE_0244

CSP: Azure

Remediation Available: Yes

Domain: Infrastructure Security

Resource: azurerm_app_service

Resource Category: Serverless

Resource Type: App Service

Frameworks

GDPR
NIST-800-171
NIST-800-53
NIST-CSF
HIPAA
SOC2