Automation Account Variables Should be Encrypted

Description:

It is important to enable encryption of Automation account variable assets when storing sensitive data.

Solution/Reference:

You should encrypt Automation Account Variables that store sensitive data. This step can only be taken at creation time. If you have Automation Account Variables storing sensitive data that are not already encrypted, then you will need to delete them and recreate them as encrypted variables. To apply encryption of the Automation account variable assets, in the Azure CLI - run the following command:

Set-AzAutomationVariable -AutomationAccountName '{AutomationAccountName}' -Encrypted $true -Name '{VariableName}' -ResourceGroupName '{ResourceGroupName}' -Value '{Value}'

https://docs.microsoft.com/powershell/module/az.automation/set-azautomationvariable?view=azps-1.4.0&WT.mc_id=Portal-Microsoft_Azure_Security

CUIT CyberSecurity

Automation Account Variables Should be Encrypted

Analytics

Description:

Solution/Reference:

Related content