AzPolicyAdvertizer

last sync: 2023-Jun-09 17:46:13 UTC

Azure Policy definition

[Deprecated]: Service principals should be used to protect your subscriptions instead of management certificates

Name

[Deprecated]: Service principals should be used to protect your subscriptions instead of management certificates
Azure Portal

6646a0bd-e110-40ca-bb97-84fcee63c414

Version

1.0.0-deprecated
details on versioning

Category

Security Center
Microsoft docs

Description

[Deprecated: With Cloud Services (classic) retiring (see https://azure.microsoft.com/updates/cloud-services-retirement-announcement), there will no longer be a need for this assessment as management certificates will be obsolete.] Management certificates allow anyone who authenticates with them to manage the subscription(s) they are associated with. To manage subscriptions more securely, use of service principals with Resource Manager is recommended to limit the impact of a certificate compromise.

Mode

All

Type

BuiltIn

Preview

FALSE

Deprecated

True

Effect

Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled

RBAC
Role(s)

none

Rule
Aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Security/assessments/status.code	Microsoft.Security	assessments	properties.status.code	false

Rule
ResourceTypes

IF (1)
Microsoft.Resources/subscriptions

Compliance

Not a Compliance control

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-05-06 16:29:23	change	Version remains equal, new suffix: deprecated (1.0.0 > 1.0.0-deprecated)
2020-09-09 11:24:03	add	6646a0bd-e110-40ca-bb97-84fcee63c414

Initiatives
usage

none

JSON