Back to Azure Resource templates index <–
Microsoft Azure Storage is a Microsoft-managed cloud service that provides storage that is highly available, secure, durable, scalable, and redundant. Azure Storage consists of Blob storage, File Storage, and Queue storage.
Template Locations
Infrastructure As Code Advisor (Beta)
WAF-compliance
The WAF-compliance advisor validates templates based on the Well Architected Framework practices. Every day a GitHub Action updates the templates compliance data and lists the recomendations.
Sustainbility Advisor
The sustainability advisor is based on the Sogeti Cloud Reference Architecture with sustainble practices. These sustainble practices cover application code, cloud infrastructures and data. The global Sogeti community is continously evolving the sustainble practices and every day new and tuned are added. For cloud infrastructures the sustainble practices are automatically validated and reported below.
note: when 100% it can be that there is no sustainble practices yet for this Cloud infrastructure.
Online documentation
Template reference
Service description
Requirements
- Resource group must been created with a valid name and location.
- Before deploying an Azure fail over group you need to have a primary sql server and sql database in place, and a secondary sql server in another region than the primary sql server.
Input values
- tagBillingIdentifier : BillingIdentifier tag.
- stSku : Standard_LRS/Standard_GRS /Standard_RAGRS/Standard_ZRS/Premium_LRS
- stBlobEncryptionEnabled : Enables Keyvault for storing secrets of disk encryption.
Output values
- stName :Name of the storage account
- stResourceId : ResourceId of the storage account
Compliance Advisor details
Resource Health Result
| Message | ResourceType | Severity |
|---|---|---|
| It is recommended to use below property for your resource Microsoft.Storage/storageAccounts { "minimumTlsVersion": "TLS1_2" }Communication between a client application and an Azure Storage account is encrypted using Transport Layer Security (TLS). TLS is a standard cryptographic protocol that ensures privacy and data integrity between clients and services over the Internet | Microsoft.Storage/storageAccounts | 3 |
| It is recommended to use below property for your resource Microsoft.Storage/storageAccounts { "allowBlobPublicAccess": false }Disallow public access to all blobs or containers in the storage account. | Microsoft.Storage/storageAccounts | 2 |
| It is recommended to use below property for your resource Microsoft.Storage/storageAccounts { "accessTier": "Cool" }Infrequently used data should be stored in cold or offline archive storage, using less energy. | Microsoft.Storage/storageAccounts | 2 |
| Location for the resource should not be hardcoded, it should be parameterized and should refer from Resource Group's location i.e. [resourceGroup().location] | Microsoft.Storage/storageAccounts | 2 |
| Your current API Version i.e.2019-06-01 for the resource Microsoft.Storage/storageAccounts is outdatedconsider updating to new recent version available i.e. 2023-01-01 or 2022-09-01 | Microsoft.Storage/storageAccounts | 2 |
| To help other contributors understand the purpose of the resource, specify comments for each resource in the template | Microsoft.Storage/storageAccounts | 1 |
| It is recommended to implement life cycle management wherever possible for your blobs, which will remove older files and limit hardware space and management on cloud | Microsoft.Storage/storageAccounts | 1 |
| It is recommended to parameterized your tag and make it as object type | Microsoft.Storage/storageAccounts | 1 |
TemplateParameterHealthResult
| Message | Severity |
|---|---|
| Define default values for parameters that aren't sensitive. By specifying a default value, it's easier to deploy the template, and users of your template see an example of an appropriate value i.e. tagBillingIdentifierRead More | 1 |
| Define default values for parameters that aren't sensitive. By specifying a default value, it's easier to deploy the template, and users of your template see an example of an appropriate value i.e. stAccountcustomnameRead More | 1 |
| Define default values for parameters that aren't sensitive. By specifying a default value, it's easier to deploy the template, and users of your template see an example of an appropriate value i.e. indexNumberRead More | 1 |
TemplateVariableHealthResult
| Message | Severity |
|---|---|
| It is recommended to make your variable as camel case, wherever possible for e.g. environmentRead More | 1 |
Sustainable Advisor details
| Message | ResourceType | Severity |
|---|---|---|
| It is recommended to use below property for your resource Microsoft.Storage/storageAccounts { "accessTier": "Cool" }Infrequently used data should be stored in cold or offline archive storage, using less energy. | Microsoft.Storage/storageAccounts | 2 |
| It is recommended to implement life cycle management wherever possible for your blobs, which will remove older files and limit hardware space and management on cloud | Microsoft.Storage/storageAccounts | 1 |