AzPolicyAdvertizer

last sync: 2024-Jul-26 18:17:39 UTC

[Preview]: Managed Identity Federated Credentials from GitHub should be from trusted repository owners

Azure BuiltIn Policy definition

Source Azure Portal
Display name [Preview]: Managed Identity Federated Credentials from GitHub should be from trusted repository owners
Id fd1a8e20-2c4f-4a6c-9354-b58d786d9a1f
Version 1.0.1-preview
Details on versioning
Category Managed Identity
Microsoft Learn
Description This policy limits federation with GitHub repos to only approved repository owners.
Mode All
Type BuiltIn
Preview True
Deprecated False
Effect Default
Audit
Allowed
Audit, Disabled, Deny
RBAC role(s) none
Rule aliases IF (2)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.ManagedIdentity/userAssignedIdentities/federatedIdentityCredentials/issuer Microsoft.ManagedIdentity userAssignedIdentities/federatedIdentityCredentials properties.issuer True False
Microsoft.ManagedIdentity/userAssignedIdentities/federatedIdentityCredentials/subject Microsoft.ManagedIdentity userAssignedIdentities/federatedIdentityCredentials properties.subject True False
Rule resource types IF (1)
Microsoft.ManagedIdentity/userAssignedIdentities/federatedIdentityCredentials
Compliance Not a Compliance control
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
[Preview]: Managed Identity Federated Credentials should be of approved types from approved federation sources 5e4ee281-95a3-442a-bb2a-5ef68cf5181a Managed Identity Preview BuiltIn
History
Date/Time (UTC ymd) (i) Change type Change detail
2023-09-22 17:59:46 change Patch, suffix remains equal (1.0.0-preview > 1.0.1-preview)
2023-04-06 17:42:16 add fd1a8e20-2c4f-4a6c-9354-b58d786d9a1f
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC