SonarQube Internet Facing

Hello Folks!

We currently have SonarQube hosted on a VM in the on premises environment, and we’d like to migrate it to Azure “as it”.
Is there any other security mechanism we can use to authenticate to the tool?

  • MFA
  • Allow interactions only from specific applications
  • Others…

In other words, the new VM on Azure would be “exposed” to the Internet, and I don’t know if that’s a risk…

Many Thanks!


Welcome to the community!

Anonymous access is disabled out-of-the-box in new versions, but I don’t know what version you’re coming from, so you’ll want to make sure you disable it in your instance.