We are implementing a solution that includes third-party systems that access our Azure Service Bus, secured by SAS. While this SAS is safe, we are happy :)
But we want to limit the impact if the SAS is compromised. For Azure Storage, SAS can be released with an IP range filter that helps, but it is not supported for the service bus.
Is there a way to restrict access to the service bus based on IP address? This is especially true, in our case, for third-party systems that must read the service bus.
Can someone switch to ACS (which option is for other reasons)?
source
share