AzPolicyAdvertizer

last sync: 2025-Jul-02 18:12:24 UTC

Azure Data Factory linked services should use system-assigned managed identity authentication when it is supported

Azure BuiltIn Policy definition

Source Azure Portal
Display name Azure Data Factory linked services should use system-assigned managed identity authentication when it is supported
Id f78ccdb4-7bf4-4106-8647-270491d2978a
Version 2.1.0
Details on versioning
Versioning Versions supported for Versioning: 1
2.1.0
Built-in Versioning [Preview]
Category Data Factory
Microsoft Learn
Description Using system-assigned managed identity when communicating with data stores via linked services avoids the use of less secured credentials such as passwords or connection strings.
Cloud environments AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown
Available in AzUSGov Unknown, no evidence if Policy definition is/not available in AzureUSGovernment
Mode All
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Audit, Deny, Disabled
RBAC role(s) none
Rule aliases IF (9)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.DataFactory/factories/linkedservices/AzureBlobFS.typeProperties.servicePrincipalCredential Microsoft.DataFactory factories/linkedservices properties.typeProperties.servicePrincipalCredential True False
Microsoft.DataFactory/factories/linkedservices/AzureBlobStorage.typeProperties.credential.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.credential.type True False
Microsoft.DataFactory/factories/linkedservices/AzureSqlDW.typeProperties.servicePrincipalKey Microsoft.DataFactory factories/linkedservices properties.typeProperties.servicePrincipalKey True False
Microsoft.DataFactory/factories/linkedservices/AzureStorage.typeProperties.accountKey Microsoft.DataFactory factories/linkedservices properties.typeProperties.accountKey True False
Microsoft.DataFactory/factories/linkedservices/AzureStorage.typeProperties.sasUri Microsoft.DataFactory factories/linkedservices properties.typeProperties.sasUri True False
Microsoft.DataFactory/factories/linkedservices/Hubspot.typeProperties.accessToken Microsoft.DataFactory factories/linkedservices properties.typeProperties.accessToken True False
Microsoft.DataFactory/factories/linkedservices/type Microsoft.DataFactory factories/linkedservices properties.type True False
Microsoft.DataFactory/factories/linkedservices/typeProperties.connectionString Microsoft.DataFactory factories/linkedservices properties.typeProperties.connectionString True False
Microsoft.DataFactory/factories/linkedservices/typeProperties.encryptedCredential Microsoft.DataFactory factories/linkedservices properties.typeProperties.encryptedCredential True False
Rule resource types IF (1)
Compliance Not a Compliance control
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type polSet in AzUSGov
Enforce recommended guardrails for Data Factory Enforce-Guardrails-DataFactory Data Factory GA ALZ
History
Date/Time (UTC ymd) (i) Change type Change detail
2023-09-01 18:00:13 change Minor (2.0.0 > 2.1.0)
2023-01-13 18:06:06 change Version remains equal, old suffix: preview (2.0.0-preview > 2.0.0)
2021-11-12 16:23:07 change Major, suffix remains equal (1.0.0-preview > 2.0.0-preview)
2021-02-10 14:43:58 add f78ccdb4-7bf4-4106-8647-270491d2978a
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC