Microsoft is changing two default security settings in new Azure Storage accounts beginning in August 2023

David Papkin David Papkin Category No Comments

I received this from Microsoft May 18 2023.

Default security settings for new Azure Storage accounts will be updated.

Microsoft is changing two default security settings in new Azure Storage accounts beginning in August 2023

You’re receiving this email because you use Azure Storage.

To align with security best practices, anonymous public access and cross-tenant replication settings in new Azure Storage accounts will soon be disabled by default in all clouds. We’ll begin making this change across Azure regions on a rolling basis in August 2023.

We’re turning these settings off to help prevent unintentional or malicious data access or replication in all new storage accounts created through any client, the storage REST API, and SDKs.

We recommend keeping these settings disabled. However, if you prefer to turn them on in accounts that you create after this change is implemented, learn how to enable anonymous access and cross-tenant replication. You may also completely opt out of the anonymous access setting being disabled by registering for “EnableAnonymousAccessForNewStorageAccounts” in the Azure portalPowerShell, or REST API before August 2023.

If you use Azure Policy to enforce authorized access for storage accounts with “Deny” effect or replication within the same tenant, these settings will already be disabled and new accounts will not be affected.

Help and support

If you have questions, get answers from community experts in Microsoft Q&A. If you have a support plan and you need technical help, create a support request:

  1. For Issue type, select Technical.
  2. For Subscription, select your subscription.
  3. For Service, select My services.
  4. For Service type, select Blob Storage.
  5. For Resource, select the Azure resource you are creating a support request for.
  6. For Summary, type a description of your issue.
  7. For Problem type, select Authentication and Authorization for anonymous access or Data Migration for cross-tenant replication.
  8. For Problem subtype, select Issues using Anonymous Access for anonymous access or Issues with object replication for cross-tenant replication.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.