Ensure that Active Directory is used for Service Fabric authentication

Error: Active Directory is not used for Service Fabric authentication

Bridgecrew Policy ID: BC_AZR_GENERAL_78
Checkov Check ID: CKV_AZURE_126
Severity: LOW

Active Directory is not used for Service Fabric authentication

Description

A Service Fabric cluster requires creating Azure Active Directory (AD) applications to control access to the cluster: one web application and one native application. After the applications are created, you will be required to assign users to read-only and admin roles.

Fix - Buildtime

Terraform

  • Resource: azurerm_service_fabric_cluster
  • Argument: azure_active_directory - (Optional) An azure_active_directory block as defined below.
resource "azurerm_service_fabric_cluster" "example" {
  ...
  + azure_active_directory {
  + 	tenant_id = "tenant"
  }
  ...
            }