You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
ScoutSuite incorrectly flags Storage Accounts that do not allow access keys as having never been rotated.
To Reproduce
Create a storage account that does not permit access key-based access using the az CLI tool:
$ az group create --location germanywestcentral --resource-group storage-account-tests
$ az storage account create --name 'account2rg2rg2r62r' --resource-group 'storage-account-tests' --allow-shared-key-access false --access-tier Hot | jq '.allowSharedKeyAccess'# Access key-based access not allowedfalse
Run ScoutSuite with default parameters:
scout azure --cli
The report will incorrectly flag account2rg2rg2r62r as having never rotated its access key, despite the storage account not even supporting access keys:
Additional context
n/a
The text was updated successfully, but these errors were encountered:
Describe the bug
ScoutSuite incorrectly flags Storage Accounts that do not allow access keys as having never been rotated.
To Reproduce
Create a storage account that does not permit access key-based access using the
azCLI tool:Run ScoutSuite with default parameters:
The report will incorrectly flag
account2rg2rg2r62ras having never rotated its access key, despite the storage account not even supporting access keys:Additional context
n/a
The text was updated successfully, but these errors were encountered: