Ensure public network access disabled for Azure Eventgrid Domain

HIGH

Description

Allowing unrestricted, public access to cloud services could open an application up to external attack. Disallowing this access is typically considered best practice.

Remediation

In Azure Console -

Open the Azure Portal and go to Event Grid Domains.
Select the Event Grid Domain you wish to edit.
Under Settings, choose Networking.
On the Public access tab, set Allow Access From to Private endpoints only.
Configure the Private Endpoint tab as needed.

In Terraform -

In the azurerm_eventgrid_domain resource, set public_network_access_enabled to false.

References:
https://learn.microsoft.com/en-us/azure/event-grid/
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/eventgrid_domain

Policy Details

Rule Reference ID: AC_AZURE_0312

CSP: Azure

Remediation Available: Yes

Domain: Infrastructure Security

Resource: azurerm_eventgrid_domain

Resource Category: Messaging

Resource Type: EventGrid Domain

Frameworks

GDPR
HIPAA
ISO-27001
NIST-800-171
NIST-800-53
NIST-CSF
PCI-DSSv3.2.1
PCI-DSSv4.0

Detections

Analytics