How to resolve Sprinto check to disable the cross tenant replication on Azure Cloud storage account
About:
Sprinto check: Ensure 'Cross Tenant Replication' is not Enabled
The above-mentioned Sprinto check verifies that the cross-tenant replication feature is not enabled for your Azure storage accounts. Cross-tenant replication allows you to replicate data between storage accounts in different Azure Active Directory tenants.
Purpose:
The purpose of this check is to prevent unauthorized data replication between storage accounts in different tenants, which could lead to potential data leaks or unauthorized access to sensitive data. By disabling cross-tenant replication, you can ensure that your data remains within your organization's tenant boundaries, reducing the risk of data exposure or misuse.
How to fix this check:
Follow the below steps to resolve this check:
Before you begin
Ensure you have the administrator privilege to manage Azure storage account configuration.
Disabling Cross-Tenant Replication
Log in to the Azure Portal using your credentials.
Navigate to the Storage Accounts service.
Select the storage account from the list for which you wish to change the configuration.
Click on Object replication, then click Advanced settings.
Un-check the Allow cross-tenant replication then click Ok to save the changes.
Repeat the above steps for all Azure cloud storage accounts that stores organization’s critical data.
Sprinto will detect the configuration change and set the check status to "Passing."
Contact Sprinto support if you have any queries related to the check or need assistance.