Control: Service Fabric clusters should only use Azure Active Directory for client authentication
Description
Audit usage of client authentication only via Azure Active Directory in Service Fabric.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.servicefabric_cluster_active_directory_authentication_enabledSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.servicefabric_cluster_active_directory_authentication_enabled --shareSQL
This control uses a named query:
select a.id as resource, case when azure_active_directory is not null then 'ok' else 'alarm' end as status, case when azure_active_directory is not null then a.name || ' using Azure Active Directory for client authentication.' else a.name || ' not using Azure Active Directory for client authentication.' end as reason , a.resource_group as resource_group , sub.display_name as subscriptionfrom azure_service_fabric_cluster a, azure_subscription sub;