Ensure that Web Application Firewall (WAF) monitoring is enabled within your Microsoft Azure cloud account so that Azure Security Center can determine if your virtual machines (Windows and Linux) are associated with application firewalls for controlling traffic in and out of VMs.
This rule resolution is part of the Cloud Conformity Security & Compliance tool for Azure
Azure Security Center strongly recommends that you provision an application firewall to help protect against attacks targeting web applications running on your virtual machines. When "Monitor Web Application Firewall" feature is enabled, the service recommends provisioning a web application firewall on your virtual machines when either of the following is true:
Instance-level public IP (ILPIP) is used and the inbound security rules for the associated network security group are configured to allow access to port 80 (HTTP) and/or 443 (HTTPS).
Load-balanced IP is used and the associated load balancing and inbound network address translation (NAT) rules are configured to allow access to port 80 (HTTP) and/or 443 (HTTPS).
To determine if Web Application Firewall (WAF) monitoring is enabled in the Azure Security Center, perform the following actions:
Remediation / Resolution
To enable Web Application Firewall (WAF) monitoring for your Microsoft Azure virtual machines (VMs), perform the following actions:
Unlock the Remediation Steps
Gain free unlimited access
to our full Knowledge Base
Over 750 rules & best practices
You are auditing:
Enable Web Application Firewall Monitoring
Risk level: Medium