Control: Cognitive Search services should use managed identity
Description
Cognitive Search services should use a managed identity for enhanced authentication security.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.search_service_uses_managed_identitySnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.search_service_uses_managed_identity --shareSQL
This control uses a named query:
select s.id as resource, case when identity ->> 'type' = 'SystemAssigned' then 'ok' else 'alarm' end as status, case when identity ->> 'type' = 'SystemAssigned' then name || ' use managed identity.' else name || ' not use managed identity.' end as reason , s.resource_group as resource_group , sub.display_name as subscriptionfrom azure_search_service as s, azure_subscription as subwhere sub.subscription_id = s.subscription_id;