Security Center contact email is not set Affecting Security Center service in Azure
Severity Framework
CCSS (Common Configuration Scoring System) is a set of measures used to determine the severity of the rule.
Snyk CCSS
Rule category
Each rule is associated with a high-level category. For example IAM, Container, Monitoring, Logging, Network, etc.
Monitoring/ Settings
Is your environment affected by this misconfiguration?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsFrameworks
CIS-Azure
- Snyk IDSNYK-CC-00677
- creditSnyk Research Team
Description
Setting the contact email ensures that the proper people are aware of any potential compromise.
How to fix?
Set the emails attribute to a valid email address.
Example Configuration
{
"$schema": "http://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#",
"contentVersion": "1.0.0.0",
"resources": [
{
"type": "Microsoft.Security/securityContacts",
"apiVersion": "2020-01-01-preview",
"name": "allow",
"properties": {
"alertNotifications": {
"minimalSeverity": "Medium",
"state": "On"
},
"emails": "contact@example.com",
"notificationsByRole": {
"roles": [ "AccountAdmin" ],
"state": "On"
},
"phone": "+1-555-555-5555"
}
}
]
}
Set the email attribute to a valid email address.
Example Configuration
resource "azurerm_security_center_contact" "example677A" {
name = "contact677A"
email = "contact@example.com"
phone = "+1-555-555-5555"
alert_notifications = true
alerts_to_admins = true
}