AzInitiativeAdvertizer

last sync: 2025-Apr-22 16:45:35 UTC

[Preview]: Managed Identity Federated Credentials should be of approved types from approved federation sources

Azure BuiltIn Policy Initiative (PolicySet)

Source Azure Portal
Display name[Preview]: Managed Identity Federated Credentials should be of approved types from approved federation sources
Id5e4ee281-95a3-442a-bb2a-5ef68cf5181a
Version1.0.0-preview
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.0-preview
Built-in Versioning [Preview]
CategoryManaged Identity
Microsoft Learn
DescriptionControl use of federated credentials for Managed Identities. This initiative incudes policies to block federated identity credentials altogether, to limit use to specific federation provider types, and to limit federation reationships to approved sources.
Cloud environmentsAzureCloud = true
AzureChinaCloud = unknown
AzureUSGovernment = unknown
Available in AzUSGovUnknown, no evidence if PolicySet definition is/not available in AzureUSGovernment
TypeBuiltIn
DeprecatedFalse
PreviewTrue
Policy-used summary
Policy types Policy states Policy categories
Total Policies: 3
Builtin Policies: 3
Static Policies: 0
Preview: 3
1 categories:
Managed Identity: 3
Policy-used
Policy DisplayName Policy Id Category Version Versioning Effect Roles# Roles State policy in AzUSGov
[Preview]: Managed Identity Federated Credentials from Azure Kubernetes should be from trusted sources ae62c456-33de-4dc8-b100-7ce9028a7d99 Managed Identity 1.0.0-preview 1x
1.0.0-preview		 Default
Audit
Allowed
Audit, Disabled, Deny		 0 Preview unknown
[Preview]: Managed Identity Federated Credentials from GitHub should be from trusted repository owners fd1a8e20-2c4f-4a6c-9354-b58d786d9a1f Managed Identity 1.0.1-preview 1x
1.0.1-preview		 Default
Audit
Allowed
Audit, Disabled, Deny		 0 Preview unknown
[Preview]: Managed Identity Federated Credentials should be from allowed issuer types 2571b7c3-3056-4a61-b00a-9bc5232234f5 Managed Identity 1.0.0-preview 1x
1.0.0-preview		 Default
Audit
Allowed
Audit, Disabled, Deny		 0 Preview unknown
Roles used No Roles used
History
Date/Time (UTC ymd) (i) Changes
2023-04-06 17:42:17 add Initiative 5e4ee281-95a3-442a-bb2a-5ef68cf5181a
JSON compare n/a
JSON
api-version=2023-04-01
EPAC