Azure Cognitive Services account is not configured with managed identity

Description

Configuring Azure Cognitive Services accounts with a managed identity enhances security by eliminating the need to store credentials in code or configuration files. It also provides seamless integration with other Azure services and simplifies the management of credentials.

Code Example

resource "azurerm_cognitive_account" "example" {
  ...
  identity {
+    type = "SystemAssigned"
  }
}

Remediation

Terraform

Resource: azurerm_cognitive_account
Arguments: identity.type

To fix this issue, ensure that your Azure Cognitive Services account is configured with a managed identity in your Terraform configuration.

Rule Details

Field	Value
ID	IAC-0745
Severity	INFO
IaC Type	arm
Frameworks	Terraform, TerraformPlan, ARM, Bicep
Checkov ID	CKV_AZURE_238

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Azure Cognitive Services account is not configured with managed identity

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Azure Cognitive Services account is not configured with managed identity ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Azure Cognitive Services account is not configured with managed identity

Description

Code Example

Remediation

Rule Details

References