Control: Batch accounts identity provider should be enabled
Description
Ensure that managed identity provider is enabled for the batch account. This control is non-compliant if batch account identity provider is disabled.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.batch_account_identity_provider_enabledSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.batch_account_identity_provider_enabled --shareSQL
This control uses a named query:
select b.id as resource, case when identity ->> 'type' = 'None' then 'alarm' else 'ok' end as status, case when identity ->> 'type' = 'None' then b.name || ' identity provider disabled.' else b.name || ' identity provider enabled.' end as reason , b.resource_group as resource_group , sub.display_name as subscriptionfrom azure_batch_account as b, azure_subscription as subwhere sub.subscription_id = b.subscription_id;