AzPolicyAdvertizer

last sync: 2025-Apr-29 17:16:02 UTC

Azure Kubernetes Service Clusters should enable workload identity

Azure BuiltIn Policy definition

Source Azure Portal
Display name Azure Kubernetes Service Clusters should enable workload identity
Id 2cc2e023-0dac-4046-875b-178f683929d5
Version 1.0.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.0
Built-in Versioning [Preview]
Category Kubernetes
Microsoft Learn
Description Workload identity allows to assign a unique identity to each Kubernetes Pod and associate it with Azure AD protected resources such as Azure Key Vault, enabling secure access to these resources from within the Pod. Learn more at: https://aka.ms/aks/wi.
Cloud environments AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown
Available in AzUSGov Unknown, no evidence if Policy definition is/not available in AzureUSGovernment
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Audit, Disabled
RBAC role(s) none
Rule aliases IF (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.ContainerService/managedClusters/securityProfile.workloadIdentity.enabled Microsoft.ContainerService managedClusters properties.securityProfile.workloadIdentity.enabled True False
Rule resource types IF (1)
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2023-08-03 17:56:09 add 2cc2e023-0dac-4046-875b-178f683929d5
JSON compare n/a
JSON
api-version=2021-06-01
EPAC