Control: Storage accounts should be migrated to new Azure Resource Manager resources
Description
Use new Azure Resource Manager for your storage accounts to provide security enhancements such as: stronger access control (RBAC), better auditing, Azure Resource Manager based deployment and governance, access to managed identities, access to key vault for secrets, Azure AD-based authentication and support for tags and resource groups for easier security management.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.storage_account_uses_azure_resource_managerSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.storage_account_uses_azure_resource_manager --shareSQL
This control uses a named query:
select s.id as resource, case when resource_group is not null then 'ok' else 'alarm' end as status, case when resource_group is not null then s.title || ' uses azure resource manager.' else s.title || ' not uses azure resource manager.' end as reason , s.resource_group as resource_group , sub.display_name as subscriptionfrom azure_storage_account as s, azure_subscription as subwhere sub.subscription_id = s.subscription_id;