AzPolicyAdvertizer

last sync: 2025-Jul-16 17:22:51 UTC

Storage accounts should enable AAD authorization in the Azure portal

Community Policy definition

Source Repository Community-Policy GitHub
JSON Community-Policy GitHub
Deploy policy a92fad36-3505-4043-9b05-2e5875879369 (1.0.0) to Azure
Display name Storage accounts should enable AAD authorization in the Azure portal
Id a92fad36-3505-4043-9b05-2e5875879369
Version 1.0.0
Details on versioning
Category Storage
Microsoft Learn
Description When this property is enabled, the Azure portal authorizes requests to blobs, queues, and tables with Azure Active Directory by default. It is disabled by default.
Mode Indexed
Type Custom Community
Effect Default
Audit
Allowed
Deny, Audit, Disabled
RBAC role(s) none
Rule aliases IF (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Storage/storageAccounts/defaultToOAuthAuthentication Microsoft.Storage storageAccounts properties.defaultToOAuthAuthentication True True
Rule resource types IF (1)
Microsoft.Storage/storageAccounts
JSON
EPAC
Deploy policy a92fad36-3505-4043-9b05-2e5875879369 (1.0.0) to Azure