last sync: 2022-Sep-26 16:35:35 UTC

Azure Policy definition

Container registries should have ARM audience token authentication disabled.

Name Container registries should have ARM audience token authentication disabled.
Azure Portal
Id 42781ec6-6127-4c30-bdfa-fb423a0047d3
Version 1.0.0
details on versioning
Category Container Registry
Microsoft docs
Description Disable Azure Active Directory ARM audience tokens for authentication to your registry. Only Azure Container Registry (ACR) audience tokens will be used for authentication. This will ensure only tokens meant for usage on the registry can be used for authentication. Disabling ARM audience tokens does not affect admin user's or scoped access tokens' authentication. Learn more at:
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: Audit
Allowed: (Audit, Deny, Disabled)
Used RBAC Role none
Rule Aliases IF (2)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.ContainerRegistry/registries/policies.azureADAuthenticationAsArmPolicy Microsoft.ContainerRegistry registries properties.policies.azureADAuthenticationAsArmPolicy false
Microsoft.ContainerRegistry/registries/policies.azureADAuthenticationAsArmPolicy.status Microsoft.ContainerRegistry registries properties.policies.azureADAuthenticationAsArmPolicy.status true
Rule ResourceTypes IF (1)
Date/Time (UTC ymd) (i) Change type Change detail
2022-07-15 16:32:44 add 42781ec6-6127-4c30-bdfa-fb423a0047d3
Used in Initiatives none