AzPolicyAdvertizer

last sync: 2025-Apr-30 18:25:25 UTC
this is the development/test site - data is not accurate. Go to prod

Azure Kubernetes Service Clusters should use managed identities

Azure BuiltIn Policy definition

Source Azure Portal
Display name Azure Kubernetes Service Clusters should use managed identities
Id da6e2401-19da-4532-9141-fb8fbde08431
Version 1.0.1
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.1
Built-in Versioning [Preview]
Category Kubernetes
Microsoft Learn
Description Use managed identities to wrap around service principals, simplify cluster management and avoid the complexity required to managed service principals. Learn more at: https://aka.ms/aks-update-managed-identities
Cloud environments AzureCloud = true
AzureUSGovernment = true
AzureChinaCloud = unknown
Available in AzUSGov The Policy is available in AzureUSGovernment cloud. Version: '1.*.*'
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Audit, Disabled
RBAC role(s) none
Rule aliases IF (2)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.ContainerService/managedClusters/servicePrincipalProfile Microsoft.ContainerService managedClusters properties.servicePrincipalProfile True False
Microsoft.ContainerService/managedClusters/servicePrincipalProfile.clientId Microsoft.ContainerService managedClusters properties.servicePrincipalProfile.clientId True False
Rule resource types IF (1)
Compliance Not a Compliance control
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type polSet in AzUSGov
[Preview]: Control the use of AKS in a Virtual Enclave d300338e-65d1-4be3-b18e-fb4ce5715a8f VirtualEnclaves Preview BuiltIn true
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-10-21 16:42:13 change Patch (1.0.0 > 1.0.1)
2022-05-06 16:29:23 add da6e2401-19da-4532-9141-fb8fbde08431
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC