Ensure that Azure Backup service is enabled and configured to create server backups for your Microsoft Azure virtual machines (VMs), in order to follow data security best practices and compliance requirements. Azure Backup service is a cost-effective, one-click backup solution that simplifies virtual machine data recovery in your Azure cloud account.
This rule resolution is part of the Conformity Security & Compliance tool for Azure.
To protect your Azure virtual machines (VMs) against accidental deletion and/or corruption, Cloud Conformity strongly recommends that you enable and configure VM backups. Once Azure Backup service is configured, your virtual machines are backed up according to a precise schedule defined within the appropriate backup policy, then recovery points are created from those backups and stored in the Azure Recovery Services vaults.
Audit
To determine if your Microsoft Azure VMs are configured for backup, perform the following actions:
Remediation / Resolution
To enable backups for your Microsoft Azure virtual machines (VMs), perform the following actions:
References
- Azure Official Documentation
- What is the Azure Backup service?
- Back up a virtual machine in Azure
- Back up a virtual machine in Azure with the CLI
- Azure PowerShell Documentation
- az vm list
- az backup vault list
- az backup item list
- az backup vault create
- az backup protection enable-for-vm