AzPolicyAdvertizer

last sync: 2022-Sep-23 16:35:49 UTC

Azure Policy definition

[Deprecated]: Service principals should be used to protect your subscriptions instead of management certificates

Name

[Deprecated]: Service principals should be used to protect your subscriptions instead of management certificates
Azure Portal

6646a0bd-e110-40ca-bb97-84fcee63c414

Version

1.0.0-deprecated
details on versioning

Category

Security Center
Microsoft docs

Description

[Deprecated: With Cloud Services (classic) retiring (see https://azure.microsoft.com/updates/cloud-services-retirement-announcement), there will no longer be a need for this assessment as management certificates will be obsolete.] Management certificates allow anyone who authenticates with them to manage the subscription(s) they are associated with. To manage subscriptions more securely, use of service principals with Resource Manager is recommended to limit the impact of a certificate compromise.

Mode

All

Type

BuiltIn

Preview

FALSE

Deprecated

True

Effect

Default: AuditIfNotExists
Allowed: (AuditIfNotExists, Disabled)

Used RBAC Role

none

Rule Aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Security/assessments/status.code	Microsoft.Security	assessments	properties.status.code	false

Rule ResourceTypes

IF (1)
Microsoft.Resources/subscriptions

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-05-06 16:29:23	change	Version remains equal, new suffix: deprecated (1.0.0 > 1.0.0-deprecated)
2020-09-09 11:24:03	add	6646a0bd-e110-40ca-bb97-84fcee63c414

Used in Initiatives

none

JSON Changes

Visual JSON JSON (Annotated)

Show unchanged values

JSON

AzPolicyAdvertizer

Azure Policy definition

[Deprecated]: Service principals should be used to protect your subscriptions instead of management certificates

JSON Left

JSON Right