More Info:

Ensure that your Microsoft Azure Key Vault SSL certificates are using the allowed key type(s) for security and compliance purposes. Prior to running this rule by the Cloud Conformity engine, the allowed certificate key type(s) must be configured within the rule settings, on the Cloud Conformity account dashboard.

Risk Level

Medium

Address

Security

Compliance Standards

CBP

Triage and Remediation

Remediation

Sure, here are the step-by-step instructions to remediate the “Allowed Certificate Key Types” misconfiguration in Azure:

  1. Log in to the Azure portal (https://portal.azure.com/).

  2. In the left-hand menu, click on “Security Center”.

  3. In the Security Center blade, click on “Security alerts” under the “Security management” section.

  4. Find the “Allowed Certificate Key Types” alert and click on it.

  5. In the alert details page, click on the “Remediation steps” tab.

  6. Follow the instructions provided in the remediation steps to remediate the misconfiguration.

  7. Once the remediation is complete, click on the “Mark as resolved” button at the bottom of the page.

That’s it! By following these steps, you should be able to remediate the “Allowed Certificate Key Types” misconfiguration in Azure using the Azure console.