Business Impact Recommendation Potential Benefits Impacted Resources --------------- -------------------------------------------------------------------------------------------------- ----------------------------------- -------------------- High SQL databases should have vulnerability findings resolved Prevent potential security breaches 1 SQL server Medium Private endpoint connections on Azure SQL Database should be enabled Prevent potential security breaches 1 SQL server Medium Storage accounts should restrict network access using virtual network rules Prevent potential security breaches 4 Storage Accounts Medium Public network access on Azure SQL Database should be disabled Prevent potential security breaches 1 SQL server Medium Web apps should request an SSL certificate for all incoming requests Prevent potential security breaches 3 App services Medium Managed identity should be used in your web app Prevent potential security breaches 2 App services Medium Private endpoint should be configured for Key Vault Prevent potential security breaches 1 Key vault Medium Storage account should use a private link connection Prevent potential security breaches 4 Storage Accounts Medium Service principals should be used to protect your subscriptions instead of Management Certificates Prevent potential security breaches 1 Subscription Medium Diagnostic logs should be enabled in App Service Prevent potential security breaches 1 App service Low Storage accounts should be migrated to new Azure Resource Manager resources Prevent potential security breaches 1 Storage Accoun