September 22, 2025, Conformity: A summary of Trend Cloud One Conformity Updates for the week ending on 19 September 2025.
Azure
- Functions-002: Enable Virtual Network Integration for Azure Functions: This rule ensures that Virtual Network integration is enabled for your Azure Function Apps
- Functions-004: Azure Function Access Keys: This rule ensures that your Microsoft Azure functions are using access keys
- AKS-012: Enable Federal Information Process Standard (FIPS) for AKS Cluster Node Pools: This rule ensures that Federal Information Process Standard (FIPS) is enabled for your Azure Kubernetes Service (AKS) cluster node pools
- AKS-011: Use System-Assigned Managed Identities for AKS Clusters: This rule ensures that your Azure Kubernetes Service (AKS) clusters are using system-assigned managed identities
- RedisCache-007: Configure IP Firewall Rules for Azure Cache for Redis Servers: This rule ensures that IP Firewall rules are configured for Azure RedisCache Servers
- Functions-003: Use System-Assigned Managed Identities for Azure Functions: This rule ensures that Azure functions are using system-assigned managed identities
GCP
- ResourceManager-009: Restrict Allowed Google Cloud APIs and Services: This rule ensures that all the Google Cloud APIs and services restricted within your organization are defined using the 'Restrict allowed Google Cloud APIs and services' organization policy.
- ResourceManager-010: Restrict Public IP Access for Cloud SQL Instances at Organization Level: This rule ensures that the 'Restrict Public IP access on Cloud SQL instances' policy is enforced for your Google Cloud organizations.
- ResourceManager-007: Disable Workload Identity at Cluster Creation: This rule ensures that the 'Disable Workload Identity Cluster Creation' policy is enforced at the GCP organization level to enforce that any new Google Kubernetes Engine (GKE) clusters have the Workload Identity feature disabled at the time of their creation.