Azure Function, Consumption plan, Linux, mitigating "FTPS should be required"


Per an Azure Support response in an Azure Docs github issue (, Consumption-tier Azure Functions on Linux don’t support the General Settings tab

[I]t is by design that "General Setting" tab is not available for
Linux Consumption function app.

Additionally, they don’t support FTP or FTPS connections at all

When using the Consumption hosting plan, your function code and
binding configuration files are stored in Azure File storage in the
main storage account, not persistent file server. Actually it is not
even possible to FTP to it. You will see /home folder is empty.

Finally, an Azure Advisor "High Impact" Security recommendation states

FTPS should be required in your function app

Given that there’s no way to change it in the portal, how can you mitigate the recommendation?


Disabling FTP/FTPS can be done through the Azure CLI:

az functionapp config set --ids "YOUR APP ID HERE" --ftps-state Disabled

Given that FTP/FTPS isn’t useful on Azure Functions Consumption plans (per the noted support response), you can also run the following to disable FTP/FTPS on all Azure Functions:

az functionapp list | ConvertFrom-Json | ForEach-Object -Process {az functionapp config set --ids $ --ftps-state Disabled}

Alternatively, you can mark the Azure Advisor recommendation as Mitigated through the Azure Portal. This can be done by clicking into the recommendation, checking all the affected resources listed under "Unhealthy resources", then clicking "Exempt".

Answered By – user1874135

This Answer collected from stackoverflow, is licensed under cc by-sa 2.5 , cc by-sa 3.0 and cc by-sa 4.0

Leave a Reply

(*) Required, Your email will not be published