Control: Container registries admin user should be disabled
Description
Ensure container registry admin user is disabled. This control is non-compliant if admin user is enabled.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.container_registry_admin_user_disabledSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.container_registry_admin_user_disabled --shareSQL
This control uses a named query:
select distinct a.name as resource, case when admin_user_enabled then 'alarm' else 'ok' end as status, case when admin_user_enabled then a.name || ' admin user enabled.' else a.name || ' admin user disabled.' end as reason , a.resource_group as resource_group , sub.display_name as subscriptionfrom azure_container_registry as a, azure_subscription as subwhere sub.subscription_id = a.subscription_id;