Ensure managed identity provider is enabled for app services
Error: Managed identity provider is not enabled for app services
Bridgecrew Policy ID: BC_AZR_GENERAL_54
Checkov Check ID: CKV_AZURE_71
Severity: LOW
Managed identity provider is not enabled for app services
Description
Managed service identity in App Service makes the app more secure by eliminating secrets from the app, such as credentials in the connection strings. When registering with Azure Active Directory in the app service, the app will connect to other Azure services securely without the need of username and passwords.
Fix - Buildtime
In Azure Console
- Log in to the Azure portal.
- Navigate to App Services.
- Click on the reported App.
- Under Setting section, Click on 'Identity'.
- Ensure that 'Status' is set to 'On'.
Fix - Buildtime
Terraform
- Resource: azurerm_app_service
- Argument: identity.type
resource "azurerm_app_service" "example" {
...
+ identity {
+ type = "SystemAssigned"
}
}
Updated 7 months ago
Did this page help you?