Azure 应用服务-文件完整性监控(FIM)
[英]Azure App Service - File Integrity Monitoring (FIM)
问题描述
I have a regulatory requirement to implement file integrity monitoring, however, I am deploying my application on Azure Web App Services, and all third party FIM tools require the installation of an agent.
我有实施文件完整性监控的法规要求,但是,我正在 Azure Web App Services 上部署我的应用程序,并且所有第三方 FIM 工具都需要安装代理。 This isn't possible as the OS is abstracted in the Azure web app service.这是不可能的,因为操作系统是在 Azure web 应用程序服务中抽象出来的。
In Azure Security Center, I can see the File Integrity(FIM) Monitoring but it is only working for VM.在 Azure 安全中心,我可以看到文件完整性 (FIM) 监控,但它仅适用于 VM。 is there any way to work FIM for App Service?有什么方法可以为 App Service 使用 FIM 吗?
thanks谢谢
3 个解决方案
解决方案1
0 已采纳 2019-11-19 15:38:54
AFAIK, this is abstracted due to the sandbox restriction. AFAIK,由于沙箱限制,这是抽象的。 As File Integrity Monitoring (FIM), also known as change monitoring, examines files and registries of operating system.作为文件完整性监控 (FIM),也称为更改监控,检查操作系统的文件和注册表。 This access is not there.此访问不存在。
https://github.com/projectkudu/kudu/wiki/Azure-Web-App-sandbox https://github.com/projectkudu/kudu/wiki/Azure-Web-App-sandbox
解决方案2
0 2022-02-27 22:52:36
Resource level and code-level changes can be tracked using Application change analysis and act like a FIM.可以使用应用程序更改分析来跟踪资源级别和代码级别的更改,并像 FIM 一样工作。 https://sakaldeep.com.np/1201/can-application-change-analysis-act-as-fim-for-azure-app-service https://sakaldeep.com.np/1201/can-application-change-analysis-act-as-fim-for-azure-app-service
解决方案3
0 2022-03-11 18:50:44
According to the docs , Azure App Service natively includes Microsoft Defender for Cloud, which includes File Integrity Monitoring .根据文档,Azure App Service 本机包括 Microsoft Defender for Cloud,其中包括文件完整性监控。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.