last sync: 2022-Oct-03 16:35:36 UTC

Azure Policy definition

Container registries should have anonymous authentication disabled.

Name Container registries should have anonymous authentication disabled.
Azure Portal
Id 9f2dea28-e834-476c-99c5-3507b4728395
Version 1.0.0
details on versioning
Category Container Registry
Microsoft docs
Description Disable anonymous pull for your registry so that data is not accessible by unauthenticated user. Disabling local authentication methods like admin user, repository scoped access tokens and anonymous pull improves security by ensuring that container registries exclusively require Azure Active Directory identities for authentication. Learn more at:
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: Audit
Allowed: (Audit, Deny, Disabled)
Used RBAC Role none
Rule Aliases IF (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.ContainerRegistry/registries/anonymousPullEnabled Microsoft.ContainerRegistry registries properties.anonymousPullEnabled true
Rule ResourceTypes IF (1)
Date/Time (UTC ymd) (i) Change type Change detail
2022-02-11 18:30:22 add 9f2dea28-e834-476c-99c5-3507b4728395
Used in Initiatives none