SonarQube Internet Facing

samir_aciardi · July 21, 2021, 6:39pm

Hello Folks!

We currently have SonarQube hosted on a VM in the on premises environment, and we’d like to migrate it to Azure “as it”.
Is there any other security mechanism we can use to authenticate to the tool?

MFA
Allow interactions only from specific applications
Others…

In other words, the new VM on Azure would be “exposed” to the Internet, and I don’t know if that’s a risk…

Many Thanks!

ganncamp · July 26, 2021, 12:49pm

Hi,

Welcome to the community!

Anonymous access is disabled out-of-the-box in new versions, but I don’t know what version you’re coming from, so you’ll want to make sure you disable it in your instance.

HTH,
Ann