Ensures that Active Directory is used for authentication for Azure Service Fabric Cluster

MEDIUM

Description

Azure Active Directory should be used for authentication for Azure Service Fabric Cluster to improve infrastructure security, otherwise unauthorized access may be possible.

Remediation

At this time, the console UI does not have remediation steps available. For possible CLI remediation, see the product documentation (below) or use Terraform.

In Terraform -

In the azurerm_service_fabric_cluster resource, set azure_active_directory block.

References:
https://learn.microsoft.com/en-us/azure/service-fabric/service-fabric-cluster-creation-setup-aad
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/service_fabric_cluster#azure_active_directory

Policy Details

Rule Reference ID: AC_AZURE_0306

CSP: Azure

Remediation Available: Yes

Domain: Infrastructure Security

Resource: azurerm_service_fabric_cluster

Resource Category: Compute

Resource Type: Service Fabric Cluster

Frameworks

GDPR
HIPAA
NIST-800-171
NIST-800-53
NIST-CSF