To follow Azure networking best practices and securely access cloud resources available within your Azure Virtual Network (VNet), ensure that Virtual Network integration is enabled for your Microsoft Azure Function Apps. With Virtual Network integration, you can restrict your Function App outbound connections to specific, trusted VNets only.
optimisation
excellence
Virtual Network integration enables your Azure Function App to reach cloud resources within a Virtual Network (VNet) but doesn't allow inbound private access. This means Function App remains accessible only from a private network like an Azure Virtual Network. The networking feature is primarily used for outbound calls from your Function App to the VNet. Virtual Network (VNet) integration is valuable for organizations that prioritize network security, compliance, and data privacy while leveraging serverless computing in Azure cloud.
Audit
To determine if Virtual Network (VNet) integration is enabled for your Azure Function Apps, perform the following actions:
Remediation / Resolution
To ensure that Virtual Network integration is enabled for your Microsoft Azure Function Apps, perform the following actions:
References
- Azure Official Documentation
- Azure Functions networking options
- Tutorial: Integrate Azure Functions with an Azure virtual network by using private endpoints
- Azure Command Line Interface (CLI) Documentation
- az functionapp list
- az functionapp show
- az functionapp vnet-integration add
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.
You are auditing:
Enable Virtual Network Integration for Azure Functions
Risk Level: High