last sync: 2022-Sep-23 16:35:49 UTC

Azure Policy definition

[Deprecated]: Service principals should be used to protect your subscriptions instead of management certificates

Name [Deprecated]: Service principals should be used to protect your subscriptions instead of management certificates
Azure Portal
Id 6646a0bd-e110-40ca-bb97-84fcee63c414
Version 1.0.0-deprecated
details on versioning
Category Security Center
Microsoft docs
Description [Deprecated: With Cloud Services (classic) retiring (see https://azure.microsoft.com/updates/cloud-services-retirement-announcement), there will no longer be a need for this assessment as management certificates will be obsolete.] Management certificates allow anyone who authenticates with them to manage the subscription(s) they are associated with. To manage subscriptions more securely, use of service principals with Resource Manager is recommended to limit the impact of a certificate compromise.
Mode All
Type BuiltIn
Preview FALSE
Deprecated True
Effect Default: AuditIfNotExists
Allowed: (AuditIfNotExists, Disabled)
Used RBAC Role none
Rule Aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Security/assessments/status.code Microsoft.Security assessments properties.status.code false
Rule ResourceTypes IF (1)
Microsoft.Resources/subscriptions
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-05-06 16:29:23 change Version remains equal, new suffix: deprecated (1.0.0 > 1.0.0-deprecated)
2020-09-09 11:24:03 add 6646a0bd-e110-40ca-bb97-84fcee63c414
Used in Initiatives none
JSON Changes

JSON