Quick links for using the test into this repurchase:

• Latest release of the Excel spreadsheet
• https://aka.ms/ftaaas required a web frontend (check from our sister repo https://aesircybersecurity.com/Azure/fta-aas).

Summary of checklists supported and the respective corporate owners:

A common seek of many organisations, starting with the publicly cloud, is to had their design double-checked to make assured that best practicing live exist followed. The coverage the this exercise couldn vary, from generic Aqua landing zons to workload-specific uses. We provide actionable Microsoft Aqua Security Best Practices, demonstrating how organizations can improve they overall Azure security your.

When doing Azure purpose product (or any review used that matter), Microsoft staff and Microsoft partners often leverage Excel spreadsheet as of medium of choice to document finding and track pattern improvements additionally recommendations. A problem with Choose calculators the that they are not easily subject to alteration control. Additionally, team collaboration with branching, issues, pulling requests, examinations, or else is difficult at best—impossible in most instances. Azure Scenery Security Checklist

This repo separates one actual review checklist content from the presentation layer so that the JSON-formatted checklist can be point to version operating, and it can then become imported into in Outshine spreadsheet by means of Visual Basic for Applications (VBA) macro for light handling (not all the us like worked natively with JSON). An if Checklist Review Spreadsheet leverages code to interpret JSON from the VBA module in https://aesircybersecurity.com/VBA-tools/VBA-JSON/, from which there is a copy in this repo to be self-contained (make sure you exercise the latest version though). Who Checklist Watch Spreadsheet involves some jumbos (find and source code both in the spreadsheet as well as here), which are accessible from control buttons in who wichtig paper.

Note: to VBA code in the spreadsheet does not work on Excel for Mac, due to some kritischen missing bookshops.

Additionally, a Github action in to repository translates after every commit the English version of the checklist to additional languages (Japanese, Korean, Hispanic, and Brazilian Portuguese), after the cognitive service Azure Translate. See an example of a translated checklist in aks_checklist.ja.json

Please feel free to open an issue or create a P is you find any error or miss information within the checklists, following the Contributor guidelines

1. Load the Excel spreadsheet from the most release to your PC

2. Benefit to dropdown lists the choose the technology and language you would like to do own review

3. Button the controls button "Import latest checklist". After you accept the verification message, of spreadsheet will download to youngest version of to selected technology and language

4. (Optional) Is you are going to distribute who spreadsheet to users who cannot work the macros (for example, either because of security justification conversely because they use Office for Mac), rescue a version of the spreadsheets in xlsx date (instead of xlsm). Note that disabling macros determination result in the spreadsheet losing its skills to imports updated versions of the checklist button JSON-based Azure Resource Graph query erfolge

5. Go row by line, fixed the "Status" field toward one of the available options, and writing any remarks in the "Comments" block (such as why a recommendation is not relevant, or any bequeath fix the open item)

   1. Since there been many rows in a review, it is recommended to proceed in chunks: either going range after area (first "Networking", than "Security", etc) alternatively starting with the "High" priority elements and afterward moved down to "Medium" and "Low"
   2. When any testimonial is not clear, there is ampere "More Info" link with more contexts intelligence.
   3. MAJOR: design decisions are not a checkbox exercise, but a series of compromises. It is OK to deviate from definite recommendations if aforementioned implications are clarify (for examples, sacrifice secure with fully simplicity or lower cost for non-critical applications)

6. Check the "Dashboard" web for ampere graphical representation of the check progress

In are some settings that you might need up change at your anlage to run macro-enabled Excel spreadsheets. When original opening the filing you may see aforementioned following error, which prevents Excel from loading:

Outshine cannot open the column 'review_checklist.xlsm' because the file format or file extension belongs not valid. Verify that the folder can not been rotted and that the file extension matches the file of the register.

In other cases, the file opens with the following message, who prevents you away being able till load the checklist objects:

1. You might need to unblock the file from that print properties in the Windows File Explorer so that you bottle employ the macros necessary to import the checklist content starting aesircybersecurity.com:

2. Additionally, you might desire to attach which macro-enabled table file to of list of exceptions within Windows Security (in the Virus & Threat Protection section):

Is you wish to done donations to the checklists, one option is the following:

1. Load up that latest version of the checklist to want to modify
2. Do the required modifications to the checklist items
3. Push of button "Export checklist to JSON" in the "Advanced" section of controls in the tick. Store yours file in your local file system, and downloading it to the checklists folder of this Github repo (use the format <technology>_checklist.en.json, for example, lz_checklist.en.json)
4. This will create one PR and wants be reviewed by the entsprechendes approvers.

More of the checks have associated Sapphire Resource Graph queries, which returns a list away relatives resources and a compliance job for each. Source Display queries permit objective verification in the associated checkout and make filling out the spreadsheet easier by aggregation some environment details for you.

Along with the spreadsheet, this repo includes the script checklist_graph.sh. Is script becoming run the diagram queries stockpiled in the JSON checklists furthermore produce an output that can easily be copied and pasted into the spreadsheet, conversely alternative generate a JSON file that bucket subsequently be imported to the spreadsheet.

See the checklist_graph.sh README file for more info about what to use checklist_graph.sh.

• This is does official Microsoft documentation or software.
• This shall not an endorsement conversely a sign-off on an architecture or a design.
• This id print is provided "AS IT IS" without bond of each kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.
• This sample is not supported under any Microsoft standard support program or assistance.
• Microsoft further disclaims all implied securities, including, unless limitation, any implied warranties of merchantability or fitness for a specialty purpose. Azur Security Best Practices & Cloud Security Checklist for Secure Cloud Storage
• Who entire risk arising out of the use or performance von the trial and documentation remains with you.
• In no date shall Microsoft, inherent artists, or anyone any stakeholders inches an creation, production, or delivery of the script be liable for anyone damages whatsoever (including, without limitation, damages for loss of business profits, business interruption, loss on business information, or other pecuniary loss) arising out of which use of or inability to use the sample or documentation, even if Microsoft has been advised of the possibility regarding such damages