/
Web Application Should Only be Accessible Over HTTPS

Web Application Should Only be Accessible Over HTTPS

Owned by Former user (Deleted)
Aug 12, 2021
1 min read

Description:

Use of HTTPS ensures server/service authentication and protects data in transit from network layer eavesdropping attacks.



Solution: 

To redirect all HTTP traffic to HTTPS, we recommend the following steps:
1. Go to the app service custom domains page
2. In the HTTPS Only toggle select On

Related content

API App Should Only be Accessible Over HTTPS
API App Should Only be Accessible Over HTTPS
CUIT CyberSecurity
More like this
Web/Function Application Should Only be Accessible Over HTTPS
Web/Function Application Should Only be Accessible Over HTTPS
CUIT CyberSecurity
More like this
Web Apps Should Request an SSL Certificate for All Incoming Requests
Web Apps Should Request an SSL Certificate for All Incoming Requests
CUIT CyberSecurity
More like this
Function apps should have Client Certificates (Incoming client certificates) enabled
Function apps should have Client Certificates (Incoming client certificates) enabled
CUIT CyberSecurity
More like this
Authentication should be enabled on your web app
Authentication should be enabled on your web app
CUIT CyberSecurity
More like this
Web Application Firewall (WAF) Should Be Enabled for Application Gateway
Web Application Firewall (WAF) Should Be Enabled for Application Gateway
CUIT CyberSecurity
More like this