| Plugin Title | Blob Service Immutable |
| Cloud | AZURE |
| Category | Blob Service |
| Description | Ensures data immutability is properly configured for blob services to protect critical data against deletion |
| More Info | Immutable storage helps store data securely by protecting critical data against deletion. |
| AZURE Link | https://docs.microsoft.com/en-us/azure/storage/blobs/storage-blob-immutable-storage#Getting-started |
| Recommended Action | Enable a data immutability policy for all storage containers in the Azure storage account. |
- Log in to the Microsoft Azure Management Console.
- Find the search bar at the top and search for "Storage accounts".
- Select the "Storage account" by clicking on the "Name" link to access the configuration changes.
- In the "Data Management" Section, Click on the "Data protection" tab. Enable the Soft delete for blobs or containers based on your required level and save.
- Now, in the left navigation panel click on "Containers" under "Data Storage"
- In the Containers List, select the container by clicking on the triple dots (...) on the extreme right and select "Access Policy".
- In the "Access Policy" panel, create immutable blob storage access policy in the containers (time-based or legal hold).
- To create a policy with container scope, don't check the box for Enable version-level immutability and click save.
- Repeat steps number 5 - 8 to ensure data immutability is properly configured in blob services to protect critical data against deletion.
