Ensure that all Microsoft Azure App Service applications developed with Java are using the latest available version of Java software in order to take advantage of the most recent security fixes, performance improvements and new features.
This rule resolution is part of the Conformity Security & Compliance tool for Azure.
efficiency
To benefit from the latest security and performance enhancements, and include any new software capabilities and features, it is strongly recommended to enable the newest version of Java software supported by Microsoft Azure App Service. For example, Azure App Service supports now Java 11, expanding the programming language support to the two latest LTS versions of the Java runtime. This allows you to run your App Service Java applications without incurring unplanned Java SE subscription fees, all while benefit from free security patches and platform bug fixes.
Audit
To determine if your Microsoft Azure App Service applications are using the latest version of Java, perform the following actions:
Remediation / Resolution
To reconfigure your Azure App Service web applications in order to enable the latest version of Java software, perform the following actions:
References
- Azure Official Documentation
- Configure an App Service app in the Azure portal
- Azure App Service update: Free Linux Tier, Python and Java support, and more
- CIS Microsoft Azure Foundations
- Azure PowerShell Documentation
- az webapp
- az webapp list-runtimes
- az webapp list
- az webapp config
- az webapp config show
- az webapp config set